SUSE update for the Linux Kernel



| Updated: 2024-12-04
Risk Critical
Patch available YES
Number of vulnerabilities 531
CVE-ID CVE-2021-4439
CVE-2021-47086
CVE-2021-47089
CVE-2021-47103
CVE-2021-47186
CVE-2021-47432
CVE-2021-47515
CVE-2021-47534
CVE-2021-47538
CVE-2021-47539
CVE-2021-47546
CVE-2021-47547
CVE-2021-47555
CVE-2021-47566
CVE-2021-47571
CVE-2021-47572
CVE-2021-47576
CVE-2021-47577
CVE-2021-47578
CVE-2021-47580
CVE-2021-47582
CVE-2021-47583
CVE-2021-47584
CVE-2021-47585
CVE-2021-47586
CVE-2021-47587
CVE-2021-47588
CVE-2021-47589
CVE-2021-47590
CVE-2021-47591
CVE-2021-47592
CVE-2021-47593
CVE-2021-47595
CVE-2021-47596
CVE-2021-47597
CVE-2021-47598
CVE-2021-47599
CVE-2021-47600
CVE-2021-47601
CVE-2021-47602
CVE-2021-47603
CVE-2021-47604
CVE-2021-47605
CVE-2021-47606
CVE-2021-47607
CVE-2021-47608
CVE-2021-47609
CVE-2021-47610
CVE-2021-47611
CVE-2021-47612
CVE-2021-47614
CVE-2021-47615
CVE-2021-47616
CVE-2021-47617
CVE-2021-47618
CVE-2021-47619
CVE-2021-47620
CVE-2021-47622
CVE-2021-47623
CVE-2021-47624
CVE-2022-48711
CVE-2022-48712
CVE-2022-48713
CVE-2022-48714
CVE-2022-48715
CVE-2022-48716
CVE-2022-48717
CVE-2022-48718
CVE-2022-48720
CVE-2022-48721
CVE-2022-48722
CVE-2022-48723
CVE-2022-48724
CVE-2022-48725
CVE-2022-48726
CVE-2022-48727
CVE-2022-48728
CVE-2022-48729
CVE-2022-48730
CVE-2022-48732
CVE-2022-48733
CVE-2022-48734
CVE-2022-48735
CVE-2022-48736
CVE-2022-48737
CVE-2022-48738
CVE-2022-48739
CVE-2022-48740
CVE-2022-48743
CVE-2022-48744
CVE-2022-48745
CVE-2022-48746
CVE-2022-48747
CVE-2022-48748
CVE-2022-48749
CVE-2022-48751
CVE-2022-48752
CVE-2022-48753
CVE-2022-48754
CVE-2022-48755
CVE-2022-48756
CVE-2022-48758
CVE-2022-48759
CVE-2022-48760
CVE-2022-48761
CVE-2022-48763
CVE-2022-48765
CVE-2022-48766
CVE-2022-48767
CVE-2022-48768
CVE-2022-48769
CVE-2022-48770
CVE-2022-48771
CVE-2022-48772
CVE-2022-48773
CVE-2022-48774
CVE-2022-48775
CVE-2022-48776
CVE-2022-48777
CVE-2022-48778
CVE-2022-48780
CVE-2022-48783
CVE-2022-48784
CVE-2022-48785
CVE-2022-48786
CVE-2022-48787
CVE-2022-48788
CVE-2022-48789
CVE-2022-48790
CVE-2022-48791
CVE-2022-48792
CVE-2022-48793
CVE-2022-48794
CVE-2022-48796
CVE-2022-48797
CVE-2022-48798
CVE-2022-48799
CVE-2022-48800
CVE-2022-48801
CVE-2022-48802
CVE-2022-48803
CVE-2022-48804
CVE-2022-48805
CVE-2022-48806
CVE-2022-48807
CVE-2022-48809
CVE-2022-48810
CVE-2022-48811
CVE-2022-48812
CVE-2022-48813
CVE-2022-48814
CVE-2022-48815
CVE-2022-48816
CVE-2022-48817
CVE-2022-48818
CVE-2022-48820
CVE-2022-48821
CVE-2022-48822
CVE-2022-48823
CVE-2022-48824
CVE-2022-48825
CVE-2022-48826
CVE-2022-48827
CVE-2022-48828
CVE-2022-48829
CVE-2022-48830
CVE-2022-48831
CVE-2022-48834
CVE-2022-48835
CVE-2022-48836
CVE-2022-48837
CVE-2022-48838
CVE-2022-48839
CVE-2022-48840
CVE-2022-48841
CVE-2022-48842
CVE-2022-48843
CVE-2022-48844
CVE-2022-48846
CVE-2022-48847
CVE-2022-48849
CVE-2022-48850
CVE-2022-48851
CVE-2022-48852
CVE-2022-48853
CVE-2022-48855
CVE-2022-48856
CVE-2022-48857
CVE-2022-48858
CVE-2022-48859
CVE-2022-48860
CVE-2022-48861
CVE-2022-48862
CVE-2022-48863
CVE-2022-48864
CVE-2022-48866
CVE-2023-24023
CVE-2023-52435
CVE-2023-52573
CVE-2023-52580
CVE-2023-52622
CVE-2023-52658
CVE-2023-52667
CVE-2023-52670
CVE-2023-52672
CVE-2023-52675
CVE-2023-52735
CVE-2023-52737
CVE-2023-52751
CVE-2023-52752
CVE-2023-52762
CVE-2023-52766
CVE-2023-52775
CVE-2023-52784
CVE-2023-52787
CVE-2023-52800
CVE-2023-52812
CVE-2023-52835
CVE-2023-52837
CVE-2023-52843
CVE-2023-52845
CVE-2023-52846
CVE-2023-52857
CVE-2023-52863
CVE-2023-52869
CVE-2023-52881
CVE-2023-52882
CVE-2023-52884
CVE-2023-52885
CVE-2023-52886
CVE-2024-25741
CVE-2024-26583
CVE-2024-26584
CVE-2024-26615
CVE-2024-26625
CVE-2024-26633
CVE-2024-26635
CVE-2024-26636
CVE-2024-26641
CVE-2024-26644
CVE-2024-26661
CVE-2024-26663
CVE-2024-26665
CVE-2024-26720
CVE-2024-26800
CVE-2024-26802
CVE-2024-26813
CVE-2024-26814
CVE-2024-26842
CVE-2024-26845
CVE-2024-26863
CVE-2024-26923
CVE-2024-26935
CVE-2024-26961
CVE-2024-26973
CVE-2024-26976
CVE-2024-27015
CVE-2024-27019
CVE-2024-27020
CVE-2024-27025
CVE-2024-27065
CVE-2024-27402
CVE-2024-27432
CVE-2024-27437
CVE-2024-33619
CVE-2024-35247
CVE-2024-35789
CVE-2024-35790
CVE-2024-35805
CVE-2024-35807
CVE-2024-35814
CVE-2024-35819
CVE-2024-35835
CVE-2024-35837
CVE-2024-35848
CVE-2024-35853
CVE-2024-35855
CVE-2024-35857
CVE-2024-35861
CVE-2024-35862
CVE-2024-35864
CVE-2024-35869
CVE-2024-35878
CVE-2024-35884
CVE-2024-35886
CVE-2024-35889
CVE-2024-35890
CVE-2024-35893
CVE-2024-35896
CVE-2024-35898
CVE-2024-35899
CVE-2024-35900
CVE-2024-35905
CVE-2024-35925
CVE-2024-35934
CVE-2024-35949
CVE-2024-35950
CVE-2024-35956
CVE-2024-35958
CVE-2024-35960
CVE-2024-35961
CVE-2024-35962
CVE-2024-35979
CVE-2024-35995
CVE-2024-35997
CVE-2024-36000
CVE-2024-36004
CVE-2024-36005
CVE-2024-36008
CVE-2024-36017
CVE-2024-36020
CVE-2024-36021
CVE-2024-36025
CVE-2024-36288
CVE-2024-36477
CVE-2024-36478
CVE-2024-36479
CVE-2024-36889
CVE-2024-36890
CVE-2024-36894
CVE-2024-36899
CVE-2024-36900
CVE-2024-36901
CVE-2024-36902
CVE-2024-36904
CVE-2024-36909
CVE-2024-36910
CVE-2024-36911
CVE-2024-36912
CVE-2024-36913
CVE-2024-36914
CVE-2024-36915
CVE-2024-36916
CVE-2024-36917
CVE-2024-36919
CVE-2024-36923
CVE-2024-36934
CVE-2024-36937
CVE-2024-36939
CVE-2024-36940
CVE-2024-36945
CVE-2024-36946
CVE-2024-36949
CVE-2024-36960
CVE-2024-36964
CVE-2024-36965
CVE-2024-36967
CVE-2024-36969
CVE-2024-36971
CVE-2024-36974
CVE-2024-36975
CVE-2024-36978
CVE-2024-37021
CVE-2024-37078
CVE-2024-37354
CVE-2024-38381
CVE-2024-38388
CVE-2024-38390
CVE-2024-38540
CVE-2024-38541
CVE-2024-38544
CVE-2024-38545
CVE-2024-38546
CVE-2024-38547
CVE-2024-38548
CVE-2024-38549
CVE-2024-38550
CVE-2024-38552
CVE-2024-38553
CVE-2024-38555
CVE-2024-38556
CVE-2024-38557
CVE-2024-38558
CVE-2024-38559
CVE-2024-38560
CVE-2024-38564
CVE-2024-38565
CVE-2024-38567
CVE-2024-38568
CVE-2024-38570
CVE-2024-38571
CVE-2024-38573
CVE-2024-38578
CVE-2024-38579
CVE-2024-38580
CVE-2024-38581
CVE-2024-38582
CVE-2024-38583
CVE-2024-38586
CVE-2024-38587
CVE-2024-38588
CVE-2024-38590
CVE-2024-38591
CVE-2024-38594
CVE-2024-38597
CVE-2024-38598
CVE-2024-38599
CVE-2024-38600
CVE-2024-38601
CVE-2024-38603
CVE-2024-38605
CVE-2024-38608
CVE-2024-38616
CVE-2024-38618
CVE-2024-38619
CVE-2024-38621
CVE-2024-38627
CVE-2024-38628
CVE-2024-38630
CVE-2024-38633
CVE-2024-38634
CVE-2024-38635
CVE-2024-38659
CVE-2024-38661
CVE-2024-38780
CVE-2024-39276
CVE-2024-39301
CVE-2024-39371
CVE-2024-39463
CVE-2024-39468
CVE-2024-39469
CVE-2024-39471
CVE-2024-39472
CVE-2024-39475
CVE-2024-39482
CVE-2024-39487
CVE-2024-39488
CVE-2024-39490
CVE-2024-39493
CVE-2024-39494
CVE-2024-39497
CVE-2024-39499
CVE-2024-39500
CVE-2024-39501
CVE-2024-39502
CVE-2024-39505
CVE-2024-39506
CVE-2024-39507
CVE-2024-39508
CVE-2024-39509
CVE-2024-40900
CVE-2024-40901
CVE-2024-40902
CVE-2024-40903
CVE-2024-40904
CVE-2024-40906
CVE-2024-40908
CVE-2024-40909
CVE-2024-40911
CVE-2024-40912
CVE-2024-40916
CVE-2024-40919
CVE-2024-40923
CVE-2024-40924
CVE-2024-40927
CVE-2024-40929
CVE-2024-40931
CVE-2024-40932
CVE-2024-40934
CVE-2024-40935
CVE-2024-40937
CVE-2024-40940
CVE-2024-40941
CVE-2024-40942
CVE-2024-40943
CVE-2024-40945
CVE-2024-40953
CVE-2024-40954
CVE-2024-40956
CVE-2024-40958
CVE-2024-40959
CVE-2024-40960
CVE-2024-40961
CVE-2024-40966
CVE-2024-40967
CVE-2024-40970
CVE-2024-40972
CVE-2024-40976
CVE-2024-40977
CVE-2024-40981
CVE-2024-40982
CVE-2024-40984
CVE-2024-40987
CVE-2024-40988
CVE-2024-40989
CVE-2024-40990
CVE-2024-40994
CVE-2024-40998
CVE-2024-40999
CVE-2024-41002
CVE-2024-41004
CVE-2024-41006
CVE-2024-41009
CVE-2024-41011
CVE-2024-41012
CVE-2024-41013
CVE-2024-41014
CVE-2024-41015
CVE-2024-41016
CVE-2024-41017
CVE-2024-41040
CVE-2024-41041
CVE-2024-41044
CVE-2024-41048
CVE-2024-41057
CVE-2024-41058
CVE-2024-41059
CVE-2024-41063
CVE-2024-41064
CVE-2024-41066
CVE-2024-41069
CVE-2024-41070
CVE-2024-41071
CVE-2024-41072
CVE-2024-41076
CVE-2024-41078
CVE-2024-41081
CVE-2024-41087
CVE-2024-41090
CVE-2024-41091
CVE-2024-42070
CVE-2024-42079
CVE-2024-42093
CVE-2024-42096
CVE-2024-42105
CVE-2024-42122
CVE-2024-42124
CVE-2024-42145
CVE-2024-42161
CVE-2024-42224
CVE-2024-42230
CWE-ID CWE-125
CWE-371
CWE-401
CWE-416
CWE-476
CWE-190
CWE-200
CWE-119
CWE-399
CWE-908
CWE-369
CWE-667
CWE-191
CWE-415
CWE-20
CWE-835
CWE-388
CWE-193
CWE-362
CWE-682
CWE-347
CWE-617
CWE-451
CWE-824
CWE-366
CWE-665
CWE-269
CWE-264
CWE-843
Exploitation vector Network
Public exploit Public exploit code for vulnerability #197 is available.
Vulnerability #349 is being exploited in the wild.
Vulnerable software
 openSUSE Leap Micro
Operating systems & Components / Operating system

SUSE Linux Enterprise Micro
Operating systems & Components / Operating system

SUSE Linux Enterprise Live Patching
Operating systems & Components / Operating system

SUSE Linux Enterprise High Availability Extension 15
Operating systems & Components / Operating system

SUSE Linux Enterprise Workstation Extension 15
Operating systems & Components / Operating system

Development Tools Module
Operating systems & Components / Operating system

Legacy Module
Operating systems & Components / Operating system

Basesystem Module
Operating systems & Components / Operating system

SUSE Linux Enterprise Server for SAP Applications 15
Operating systems & Components / Operating system

SUSE Linux Enterprise Server 15
Operating systems & Components / Operating system

SUSE Linux Enterprise Real Time 15
Operating systems & Components / Operating system

SUSE Linux Enterprise High Performance Computing 15
Operating systems & Components / Operating system

SUSE Linux Enterprise Desktop 15
Operating systems & Components / Operating system

openSUSE Leap
Operating systems & Components / Operating system

kernel-64kb
Operating systems & Components / Operating system package or component

ocfs2-kmp-64kb-debuginfo
Operating systems & Components / Operating system package or component

dtb-freescale
Operating systems & Components / Operating system package or component

dtb-exynos
Operating systems & Components / Operating system package or component

dlm-kmp-64kb-debuginfo
Operating systems & Components / Operating system package or component

kernel-64kb-devel-debuginfo
Operating systems & Components / Operating system package or component

gfs2-kmp-64kb-debuginfo
Operating systems & Components / Operating system package or component

dtb-marvell
Operating systems & Components / Operating system package or component

dtb-hisilicon
Operating systems & Components / Operating system package or component

dtb-sprd
Operating systems & Components / Operating system package or component

dtb-amazon
Operating systems & Components / Operating system package or component

kselftests-kmp-64kb-debuginfo
Operating systems & Components / Operating system package or component

kernel-64kb-optional
Operating systems & Components / Operating system package or component

dtb-qcom
Operating systems & Components / Operating system package or component

dtb-broadcom
Operating systems & Components / Operating system package or component

dtb-altera
Operating systems & Components / Operating system package or component

dtb-mediatek
Operating systems & Components / Operating system package or component

dtb-arm
Operating systems & Components / Operating system package or component

dtb-amlogic
Operating systems & Components / Operating system package or component

dtb-apm
Operating systems & Components / Operating system package or component

dtb-amd
Operating systems & Components / Operating system package or component

dtb-apple
Operating systems & Components / Operating system package or component

dtb-cavium
Operating systems & Components / Operating system package or component

dtb-socionext
Operating systems & Components / Operating system package or component

dtb-nvidia
Operating systems & Components / Operating system package or component

cluster-md-kmp-64kb-debuginfo
Operating systems & Components / Operating system package or component

reiserfs-kmp-64kb
Operating systems & Components / Operating system package or component

ocfs2-kmp-64kb
Operating systems & Components / Operating system package or component

dtb-rockchip
Operating systems & Components / Operating system package or component

dtb-renesas
Operating systems & Components / Operating system package or component

dlm-kmp-64kb
Operating systems & Components / Operating system package or component

reiserfs-kmp-64kb-debuginfo
Operating systems & Components / Operating system package or component

kernel-64kb-debuginfo
Operating systems & Components / Operating system package or component

kselftests-kmp-64kb
Operating systems & Components / Operating system package or component

kernel-64kb-devel
Operating systems & Components / Operating system package or component

kernel-64kb-livepatch-devel
Operating systems & Components / Operating system package or component

kernel-64kb-debugsource
Operating systems & Components / Operating system package or component

kernel-64kb-extra-debuginfo
Operating systems & Components / Operating system package or component

kernel-64kb-extra
Operating systems & Components / Operating system package or component

dtb-allwinner
Operating systems & Components / Operating system package or component

kernel-64kb-optional-debuginfo
Operating systems & Components / Operating system package or component

gfs2-kmp-64kb
Operating systems & Components / Operating system package or component

cluster-md-kmp-64kb
Operating systems & Components / Operating system package or component

dtb-lg
Operating systems & Components / Operating system package or component

dtb-xilinx
Operating systems & Components / Operating system package or component

dtb-aarch64
Operating systems & Components / Operating system package or component

kernel-zfcpdump-debuginfo
Operating systems & Components / Operating system package or component

kernel-zfcpdump-debugsource
Operating systems & Components / Operating system package or component

kernel-zfcpdump
Operating systems & Components / Operating system package or component

kernel-livepatch-SLE15-SP5_Update_17-debugsource
Operating systems & Components / Operating system package or component

kernel-livepatch-5_14_21-150500_55_73-default
Operating systems & Components / Operating system package or component

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo
Operating systems & Components / Operating system package or component

kernel-kvmsmall
Operating systems & Components / Operating system package or component

kernel-default
Operating systems & Components / Operating system package or component

kernel-default-debuginfo
Operating systems & Components / Operating system package or component

kernel-obs-build-debugsource
Operating systems & Components / Operating system package or component

kernel-default-livepatch
Operating systems & Components / Operating system package or component

kernel-obs-build
Operating systems & Components / Operating system package or component

reiserfs-kmp-default
Operating systems & Components / Operating system package or component

kernel-default-extra-debuginfo
Operating systems & Components / Operating system package or component

reiserfs-kmp-default-debuginfo
Operating systems & Components / Operating system package or component

kernel-default-extra
Operating systems & Components / Operating system package or component

cluster-md-kmp-default
Operating systems & Components / Operating system package or component

kernel-default-devel
Operating systems & Components / Operating system package or component

ocfs2-kmp-default-debuginfo
Operating systems & Components / Operating system package or component

kernel-default-debugsource
Operating systems & Components / Operating system package or component

dlm-kmp-default-debuginfo
Operating systems & Components / Operating system package or component

cluster-md-kmp-default-debuginfo
Operating systems & Components / Operating system package or component

kernel-default-optional-debuginfo
Operating systems & Components / Operating system package or component

kernel-obs-qa
Operating systems & Components / Operating system package or component

dlm-kmp-default
Operating systems & Components / Operating system package or component

gfs2-kmp-default-debuginfo
Operating systems & Components / Operating system package or component

kernel-default-optional
Operating systems & Components / Operating system package or component

kernel-default-devel-debuginfo
Operating systems & Components / Operating system package or component

kselftests-kmp-default-debuginfo
Operating systems & Components / Operating system package or component

kernel-syms
Operating systems & Components / Operating system package or component

kernel-default-livepatch-devel
Operating systems & Components / Operating system package or component

gfs2-kmp-default
Operating systems & Components / Operating system package or component

ocfs2-kmp-default
Operating systems & Components / Operating system package or component

kselftests-kmp-default
Operating systems & Components / Operating system package or component

kernel-default-base-rebuild
Operating systems & Components / Operating system package or component

kernel-kvmsmall-devel-debuginfo
Operating systems & Components / Operating system package or component

kernel-kvmsmall-debuginfo
Operating systems & Components / Operating system package or component

kernel-kvmsmall-livepatch-devel
Operating systems & Components / Operating system package or component

kernel-kvmsmall-devel
Operating systems & Components / Operating system package or component

kernel-kvmsmall-debugsource
Operating systems & Components / Operating system package or component

kernel-default-base
Operating systems & Components / Operating system package or component

kernel-debug-vdso-debuginfo
Operating systems & Components / Operating system package or component

kernel-debug-vdso
Operating systems & Components / Operating system package or component

kernel-default-vdso-debuginfo
Operating systems & Components / Operating system package or component

kernel-default-vdso
Operating systems & Components / Operating system package or component

kernel-kvmsmall-vdso
Operating systems & Components / Operating system package or component

kernel-kvmsmall-vdso-debuginfo
Operating systems & Components / Operating system package or component

kernel-debug-devel-debuginfo
Operating systems & Components / Operating system package or component

kernel-debug-devel
Operating systems & Components / Operating system package or component

kernel-debug-debugsource
Operating systems & Components / Operating system package or component

kernel-debug-debuginfo
Operating systems & Components / Operating system package or component

kernel-debug-livepatch-devel
Operating systems & Components / Operating system package or component

kernel-debug
Operating systems & Components / Operating system package or component

kernel-source-vanilla
Operating systems & Components / Operating system package or component

kernel-devel
Operating systems & Components / Operating system package or component

kernel-macros
Operating systems & Components / Operating system package or component

kernel-source
Operating systems & Components / Operating system package or component

kernel-docs-html
Operating systems & Components / Operating system package or component

kernel-docs
Operating systems & Components / Operating system package or component

Vendor SUSE

Security Bulletin

This security bulletin contains information about 531 vulnerabilities.

1) Out-of-bounds read

EUVDB-ID: #VU92900

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2021-4439

CWE-ID: CWE-125 - Out-of-bounds read

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to an out-of-bounds read error within the detach_capi_ctr() function in drivers/isdn/capi/kcapi.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

2) State Issues

EUVDB-ID: #VU89260

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2021-47086

CWE-ID: CWE-371 - State Issues

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to incorrect handling of the socket state within the pep_ioctl() function in net/phonet/pep.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

3) Memory leak

EUVDB-ID: #VU90020

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2021-47089

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the kfence_debugfs_init() function in mm/kfence/core.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

4) Use-after-free

EUVDB-ID: #VU90232

Risk: High

CVSSv4.0: 8.1 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber]

CVE-ID: CVE-2021-47103

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a remote attacker to compromise the affected system.

The vulnerability exists due to a use-after-free error within the inet6_sk_rx_dst_set(), tcp_v6_do_rcv() and tcp_v6_early_demux() functions in net/ipv6/tcp_ipv6.c, within the udp_sk_rx_dst_set(), __udp4_lib_rcv() and udp_v4_early_demux() functions in net/ipv4/udp.c, within the tcp_v4_do_rcv(), tcp_v4_early_demux(), tcp_prequeue() and inet_sk_rx_dst_set() functions in net/ipv4/tcp_ipv4.c, within the tcp_rcv_established() function in net/ipv4/tcp_input.c, within the tcp_disconnect() function in net/ipv4/tcp.c, within the inet_sock_destruct() function in net/ipv4/af_inet.c. A local user can send specially crafted packets to the system, trigger a use-after-free error and potentially execute arbitrary code.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

5) NULL pointer dereference

EUVDB-ID: #VU90581

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2021-47186

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the tipc_aead_init() function in net/tipc/crypto.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

6) Integer overflow

EUVDB-ID: #VU91179

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2021-47432

CWE-ID: CWE-190 - Integer overflow

Exploit availability: No

Description

The vulnerability allows a local user to execute arbitrary code.

The vulnerability exists due to integer overflow within the __genradix_iter_peek() function in lib/generic-radix-tree.c. A local user can execute arbitrary code.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

7) NULL pointer dereference

EUVDB-ID: #VU90391

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2021-47515

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the seg6_do_srh_encap() function in net/ipv6/seg6_iptunnel.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

8) Memory leak

EUVDB-ID: #VU91617

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2021-47534

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the vc4_atomic_commit_tail() function in drivers/gpu/drm/vc4/vc4_kms.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

9) Information disclosure

EUVDB-ID: #VU91325

Risk: Low

CVSSv4.0: 1.1 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2021-47538

CWE-ID: CWE-200 - Exposure of sensitive information to an unauthorized actor

Exploit availability: No

Description

The vulnerability allows a local user to gain access to sensitive information.

The vulnerability exists due to information disclosure within the rxrpc_create_peer(), rxrpc_lookup_peer(), __rxrpc_put_peer() and rxrpc_put_peer_locked() functions in net/rxrpc/peer_object.c. A local user can gain access to sensitive information.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

10) Information disclosure

EUVDB-ID: #VU91328

Risk: Low

CVSSv4.0: 1.1 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2021-47539

CWE-ID: CWE-200 - Exposure of sensitive information to an unauthorized actor

Exploit availability: No

Description

The vulnerability allows a local user to gain access to sensitive information.

The vulnerability exists due to information disclosure within the rxrpc_get_bundle() and rxrpc_look_up_bundle() functions in net/rxrpc/conn_client.c. A local user can gain access to sensitive information.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

11) Memory leak

EUVDB-ID: #VU89931

Risk: Medium

CVSSv4.0: 6.6 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Green]

CVE-ID: CVE-2021-47546

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within fib6_rule_suppress() function in net/ipv4/fib_rules.c. A remote attacker can send IPv6 packets to the system, trigger memory leak and perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

12) Out-of-bounds read

EUVDB-ID: #VU91080

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2021-47547

CWE-ID: CWE-125 - Out-of-bounds read

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to an out-of-bounds read error within the mii_get_phy() function in drivers/net/ethernet/dec/tulip/de4x5.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

13) Memory leak

EUVDB-ID: #VU91616

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2021-47555

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the vlan_dev_init() function in net/8021q/vlan_dev.c, within the register_vlan_dev() function in net/8021q/vlan.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

14) Buffer overflow

EUVDB-ID: #VU93289

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2021-47566

CWE-ID: CWE-119 - Memory corruption

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to memory corruption within the read_from_oldmem() function in fs/proc/vmcore.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

15) Use-after-free

EUVDB-ID: #VU91051

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2021-47571

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the _rtl92e_pci_disconnect() function in drivers/staging/rtl8192e/rtl8192e/rtl_core.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

16) NULL pointer dereference

EUVDB-ID: #VU90402

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2021-47572

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the nh_create_ipv6() function in net/ipv4/nexthop.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

17) Use-after-free

EUVDB-ID: #VU92299

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2021-47576

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the resp_mode_select() function in drivers/scsi/scsi_debug.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

18) Resource management error

EUVDB-ID: #VU93265

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2021-47577

CWE-ID: CWE-399 - Resource Management Errors

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to resource management error within the io_acct_cancel_pending_work(), io_queue_worker_create(), io_wq_exit_start() and io_wq_exit_workers() functions in fs/io-wq.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

19) NULL pointer dereference

EUVDB-ID: #VU92340

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2021-47578

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the resp_verify() and resp_report_zones() functions in drivers/scsi/scsi_debug.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

20) Out-of-bounds read

EUVDB-ID: #VU92318

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2021-47580

CWE-ID: CWE-125 - Out-of-bounds read

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to an out-of-bounds read error within the p_fill_from_dev_buffer(), resp_inquiry(), resp_requests(), resp_mode_sense(), resp_ie_l_pg(), resp_log_sense() and resp_report_zones() functions in drivers/scsi/scsi_debug.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

21) Resource management error

EUVDB-ID: #VU93277

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2021-47582

CWE-ID: CWE-399 - Resource Management Errors

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to resource management error within the usbdev_release(), do_proc_control() and do_proc_bulk() functions in drivers/usb/core/devio.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

22) Use of uninitialized resource

EUVDB-ID: #VU92933

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2021-47583

CWE-ID: CWE-908 - Use of Uninitialized Resource

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to use of uninitialized resource within the mxl111sf_init() and mxl111sf_get_stream_config_dvbt() functions in drivers/media/usb/dvb-usb-v2/mxl111sf.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

23) Division by zero

EUVDB-ID: #VU92379

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2021-47584

CWE-ID: CWE-369 - Divide By Zero

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to a division by zero error within the ioc_timer_fn() function in block/blk-iocost.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

24) Memory leak

EUVDB-ID: #VU92290

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2021-47585

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the fs/btrfs/tree-log.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

25) Out-of-bounds read

EUVDB-ID: #VU92315

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2021-47586

CWE-ID: CWE-125 - Out-of-bounds read

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to an out-of-bounds read error within the rk_gmac_setup() function in drivers/net/ethernet/stmicro/stmmac/dwmac-rk.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

26) Improper locking

EUVDB-ID: #VU92353

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2021-47587

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the tdma_port_write_desc_addr() and bcm_sysport_open() functions in drivers/net/ethernet/broadcom/bcmsysport.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

27) Integer underflow

EUVDB-ID: #VU92374

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2021-47588

CWE-ID: CWE-191 - Integer underflow

Exploit availability: No

Description

The vulnerability allows a local user to execute arbitrary code.

The vulnerability exists due to integer underflow within the sit_init_net() function in net/ipv6/sit.c. A local user can execute arbitrary code.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

28) Use-after-free

EUVDB-ID: #VU92300

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2021-47589

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the igbvf_probe() function in drivers/net/ethernet/intel/igbvf/netdev.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

29) Improper locking

EUVDB-ID: #VU92354

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2021-47590

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the __mptcp_push_pending() function in net/mptcp/protocol.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

30) NULL pointer dereference

EUVDB-ID: #VU92333

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2021-47591

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the mptcp_supported_sockopt() function in net/mptcp/sockopt.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

31) NULL pointer dereference

EUVDB-ID: #VU92334

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2021-47592

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the tc_setup_cls_u32(), tc_init(), tc_del_flow() and tc_add_vlan_flow() functions in drivers/net/ethernet/stmicro/stmmac/stmmac_tc.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

32) NULL pointer dereference

EUVDB-ID: #VU92335

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2021-47593

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the mptcp_accept() function in net/mptcp/protocol.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

33) Buffer overflow

EUVDB-ID: #VU93133

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2021-47595

CWE-ID: CWE-119 - Memory corruption

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory corruption within the ets_qdisc_change() function in net/sched/sch_ets.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

34) Use-after-free

EUVDB-ID: #VU92301

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2021-47596

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the hclgevf_send_mbx_msg() function in drivers/net/ethernet/hisilicon/hns3/hns3vf/hclgevf_mbx.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

35) Use of uninitialized resource

EUVDB-ID: #VU92934

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2021-47597

CWE-ID: CWE-908 - Use of Uninitialized Resource

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to use of uninitialized resource within the inet_sk_diag_fill() function in net/ipv4/inet_diag.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

36) Use-after-free

EUVDB-ID: #VU92302

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2021-47598

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the cake_init() function in net/sched/sch_cake.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

37) Double free

EUVDB-ID: #VU93763

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2021-47599

CWE-ID: CWE-415 - Double Free

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to a double free error within the btrfs_unfreeze() function in fs/btrfs/super.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

38) Use-after-free

EUVDB-ID: #VU92303

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2021-47600

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the rebalance_children() function in drivers/md/persistent-data/dm-btree-remove.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

39) NULL pointer dereference

EUVDB-ID: #VU92337

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2021-47601

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the copy_ta_binary() function in drivers/tee/amdtee/core.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

40) Use of uninitialized resource

EUVDB-ID: #VU92372

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2021-47602

CWE-ID: CWE-908 - Use of Uninitialized Resource

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to use of uninitialized resource within the ieee80211_sta_tx_wmm_ac_notify() function in net/mac80211/mlme.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

41) Improper locking

EUVDB-ID: #VU92355

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2021-47603

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the kauditd_send_queue() and audit_net_init() functions in kernel/audit.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

42) Out-of-bounds read

EUVDB-ID: #VU92316

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2021-47604

CWE-ID: CWE-125 - Out-of-bounds read

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to an out-of-bounds read error within the vduse_vdpa_get_config() function in drivers/vdpa/vdpa_user/vduse_dev.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

43) Out-of-bounds read

EUVDB-ID: #VU92317

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2021-47605

CWE-ID: CWE-125 - Out-of-bounds read

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to an out-of-bounds read error within the vduse_dev_ioctl() function in drivers/vdpa/vdpa_user/vduse_dev.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

44) Improper locking

EUVDB-ID: #VU92356

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2021-47606

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the netlink_sendmsg() function in net/netlink/af_netlink.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

45) Memory leak

EUVDB-ID: #VU92291

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2021-47607

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the check_atomic() function in kernel/bpf/verifier.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

46) Memory leak

EUVDB-ID: #VU92292

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2021-47608

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the check_atomic() function in kernel/bpf/verifier.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

47) Buffer overflow

EUVDB-ID: #VU93303

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2021-47609

CWE-ID: CWE-119 - Memory corruption

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to memory corruption within the scpi_pm_domain_probe() function in drivers/firmware/scpi_pm_domain.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

48) NULL pointer dereference

EUVDB-ID: #VU92338

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2021-47610

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the msm_ioctl_gem_submit() function in drivers/gpu/drm/msm/msm_gem_submit.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

49) Input validation error

EUVDB-ID: #VU93309

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2021-47611

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation within the ieee802_11_parse_elems_crc() function in net/mac80211/util.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

50) NULL pointer dereference

EUVDB-ID: #VU92339

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2021-47612

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the nfc_genl_dump_devices_done() function in net/nfc/netlink.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

51) Use-after-free

EUVDB-ID: #VU92993

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2021-47614

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the add_pble_prm() function in drivers/infiniband/hw/irdma/pble.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

52) Improper locking

EUVDB-ID: #VU92357

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2021-47615

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the mlx5_ib_dereg_mr(), mlx5_ib_alloc_pi_mr() and __mlx5_ib_alloc_mr() functions in drivers/infiniband/hw/mlx5/mr.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

53) Use-after-free

EUVDB-ID: #VU92304

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2021-47616

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the rxe_qp_from_init() function in drivers/infiniband/sw/rxe/rxe_qp.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

54) Infinite loop

EUVDB-ID: #VU92929

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2021-47617

CWE-ID: CWE-835 - Loop with Unreachable Exit Condition ('Infinite Loop')

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to infinite loop within the pciehp_ist() function in drivers/pci/hotplug/pciehp_hpc.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

55) NULL pointer dereference

EUVDB-ID: #VU92918

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2021-47618

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the obj-$() function in arch/arm/probes/kprobes/Makefile. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

56) NULL pointer dereference

EUVDB-ID: #VU92919

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2021-47619

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the i40e_get_lump() function in drivers/net/ethernet/intel/i40e/i40e_main.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

57) Out-of-bounds read

EUVDB-ID: #VU92905

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2021-47620

CWE-ID: CWE-125 - Out-of-bounds read

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to an out-of-bounds read error within the hci_le_adv_report_evt() function in net/bluetooth/hci_event.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

58) Improper locking

EUVDB-ID: #VU94457

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2021-47622

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the EXPORT_SYMBOL_GPL(), ufshcd_hba_capabilities(), ufshcd_wait_for_dev_cmd(), ufshcd_exec_dev_cmd(), ufshcd_issue_devman_upiu_cmd() and ufshcd_init() functions in drivers/scsi/ufs/ufshcd.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

59) Resource management error

EUVDB-ID: #VU94487

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2021-47623

CWE-ID: CWE-399 - Resource Management Errors

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to resource management error within the set_pte_at() function in arch/powerpc/mm/pgtable.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

60) Memory leak

EUVDB-ID: #VU94401

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2021-47624

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the rpc_sysfs_xprt_state_change() function in net/sunrpc/sysfs.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

61) Input validation error

EUVDB-ID: #VU92925

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48711

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation within the tipc_mon_rcv() function in net/tipc/monitor.c, within the tipc_link_proto_rcv() function in net/tipc/link.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

62) Improper error handling

EUVDB-ID: #VU92926

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48712

CWE-ID: CWE-388 - Error Handling

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper error handling within the ext4_fc_record_modified_inode(), ext4_fc_replay_inode(), ext4_fc_replay_add_range(), ext4_ext_replay_shrink_inode() and ext4_fc_replay_del_range() functions in fs/ext4/fast_commit.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

63) NULL pointer dereference

EUVDB-ID: #VU92920

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48713

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the pt_handle_status() function in arch/x86/events/intel/pt.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

64) Out-of-bounds read

EUVDB-ID: #VU92906

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48714

CWE-ID: CWE-125 - Out-of-bounds read

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to an out-of-bounds read error within the bpf_ringbuf_area_alloc() function in kernel/bpf/ringbuf.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

65) Resource management error

EUVDB-ID: #VU93180

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48715

CWE-ID: CWE-399 - Resource Management Errors

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to resource management error within the bnx2fc_l2_rcv_thread() and bnx2fc_recv_frame() functions in drivers/scsi/bnx2fc/bnx2fc_fcoe.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

66) Buffer overflow

EUVDB-ID: #VU93249

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48716

CWE-ID: CWE-119 - Memory corruption

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory corruption within the wcd938x_sdw_connect_port(), wcd938x_set_compander(), wcd938x_get_swr_port() and wcd938x_set_swr_port() functions in sound/soc/codecs/wcd938x.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

67) Out-of-bounds read

EUVDB-ID: #VU92907

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48717

CWE-ID: CWE-125 - Out-of-bounds read

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to an out-of-bounds read error within the speaker_gain_control_put() function in sound/soc/codecs/max9759.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

68) NULL pointer dereference

EUVDB-ID: #VU92921

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48718

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the mxsfb_crtc_atomic_enable() function in drivers/gpu/drm/mxsfb/mxsfb_kms.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

69) Memory leak

EUVDB-ID: #VU92891

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48720

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the macsec_common_dellink() and macsec_dellink() functions in drivers/net/macsec.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

70) Improper locking

EUVDB-ID: #VU92924

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48721

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the smc_stat_fallback(), smc_switch_to_fallback() and smc_clcsock_data_ready() functions in net/smc/af_smc.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

71) Memory leak

EUVDB-ID: #VU92892

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48722

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the ca8210_async_xmit_complete() function in drivers/net/ieee802154/ca8210.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

72) Memory leak

EUVDB-ID: #VU92893

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48723

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the uniphier_spi_probe() function in drivers/spi/spi-uniphier.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

73) Memory leak

EUVDB-ID: #VU92880

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48724

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the intel_setup_irq_remapping() function in drivers/iommu/intel_irq_remapping.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

74) Memory leak

EUVDB-ID: #VU92881

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48725

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the siw_create_qp() function in drivers/infiniband/sw/siw/siw_verbs.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

75) Use-after-free

EUVDB-ID: #VU92894

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48726

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the ucma_alloc_ctx(), ucma_cleanup_multicast(), ucma_process_join(), mutex_unlock() and ucma_leave_multicast() functions in drivers/infiniband/core/ucma.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

76) Improper error handling

EUVDB-ID: #VU92939

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48727

CWE-ID: CWE-388 - Error Handling

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper error handling within the arch/arm64/kvm/hyp/include/hyp/switch.h. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

77) NULL pointer dereference

EUVDB-ID: #VU92908

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48728

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the hfi1_ipoib_netdev_dtor() and hfi1_ipoib_setup_rn() functions in drivers/infiniband/hw/hfi1/ipoib_main.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

78) Resource management error

EUVDB-ID: #VU92958

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48729

CWE-ID: CWE-399 - Resource Management Errors

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to resource management error within the hfi1_ipoib_txreq_init() function in drivers/infiniband/hw/hfi1/ipoib_tx.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

79) Memory leak

EUVDB-ID: #VU92882

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48730

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the dma_heap_ioctl() function in drivers/dma-buf/dma-heap.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

80) Off-by-one

EUVDB-ID: #VU92927

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48732

CWE-ID: CWE-193 - Off-by-one Error

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to an off-by-one error within the nvbios_addr() function in drivers/gpu/drm/nouveau/nvkm/subdev/bios/base.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

81) Use-after-free

EUVDB-ID: #VU92895

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48733

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the btrfs_wait_delalloc_flush() and btrfs_commit_transaction() functions in fs/btrfs/transaction.c, within the create_snapshot() function in fs/btrfs/ioctl.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

82) Improper locking

EUVDB-ID: #VU92922

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48734

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the btrfs_quota_disable() and qgroup_rescan_init() functions in fs/btrfs/qgroup.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

83) Use-after-free

EUVDB-ID: #VU92896

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48735

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the snd_hda_gen_spec_free() and create_mute_led_cdev() functions in sound/pci/hda/hda_generic.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

84) Out-of-bounds read

EUVDB-ID: #VU92901

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48736

CWE-ID: CWE-125 - Out-of-bounds read

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to an out-of-bounds read error within the snd_soc_put_xr_sx() function in sound/soc/soc-ops.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

85) Out-of-bounds read

EUVDB-ID: #VU92902

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48737

CWE-ID: CWE-125 - Out-of-bounds read

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to an out-of-bounds read error within the snd_soc_put_volsw_sx() function in sound/soc/soc-ops.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

86) Out-of-bounds read

EUVDB-ID: #VU92903

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48738

CWE-ID: CWE-125 - Out-of-bounds read

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to an out-of-bounds read error within the snd_soc_put_volsw() function in sound/soc/soc-ops.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

87) Out-of-bounds read

EUVDB-ID: #VU92904

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48739

CWE-ID: CWE-125 - Out-of-bounds read

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to an out-of-bounds read error within the include/uapi/sound/asound.h, sound/soc/codecs/hdmi-codec.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

88) NULL pointer dereference

EUVDB-ID: #VU92909

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48740

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the cond_list_destroy() and cond_read_list() functions in security/selinux/ss/conditional.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

89) Integer underflow

EUVDB-ID: #VU92928

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48743

CWE-ID: CWE-191 - Integer underflow

Exploit availability: No

Description

The vulnerability allows a local user to execute arbitrary code.

The vulnerability exists due to integer underflow within the xgbe_rx_buf2_len() function in drivers/net/ethernet/amd/xgbe/xgbe-drv.c. A local user can execute arbitrary code.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

90) Buffer overflow

EUVDB-ID: #VU92950

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48744

CWE-ID: CWE-119 - Memory corruption

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to memory corruption within the mlx5e_xmit_xdp_frame() function in drivers/net/ethernet/mellanox/mlx5/core/en/xdp.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

91) Race condition

EUVDB-ID: #VU92930

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48745

CWE-ID: CWE-362 - Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a race condition within the mlx5_stop_sync_reset_poll() function in drivers/net/ethernet/mellanox/mlx5/core/fw_reset.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

92) NULL pointer dereference

EUVDB-ID: #VU92911

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48746

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the mlx5e_rep_bond_unslave(), mlx5e_rep_changelowerstate_event(), mlx5e_rep_changeupper_event() and mlx5e_rep_esw_bond_netevent() functions in drivers/net/ethernet/mellanox/mlx5/core/en/rep/bond.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

93) Use of uninitialized resource

EUVDB-ID: #VU92932

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48747

CWE-ID: CWE-908 - Use of Uninitialized Resource

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to use of uninitialized resource within the bio_truncate() function in block/bio.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

94) Memory leak

EUVDB-ID: #VU92884

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48748

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the __allowed_ingress() function in net/bridge/br_vlan.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

95) NULL pointer dereference

EUVDB-ID: #VU92912

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48749

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the dpu_setup_dspp_pcc() function in drivers/gpu/drm/msm/disp/dpu1/dpu_hw_dspp.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

96) NULL pointer dereference

EUVDB-ID: #VU92914

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48751

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the smc_stat_fallback(), smc_switch_to_fallback(), smc_listen_decline(), smc_listen_work(), smc_sendmsg(), smc_setsockopt() and smc_getsockopt() functions in net/smc/af_smc.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

97) Resource management error

EUVDB-ID: #VU92959

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48752

CWE-ID: CWE-399 - Resource Management Errors

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to resource management error within the power_pmu_disable() function in arch/powerpc/perf/core-book3s.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

98) Memory leak

EUVDB-ID: #VU92885

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48753

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the disk_register_independent_access_ranges() function in block/blk-ia-ranges.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

99) Use-after-free

EUVDB-ID: #VU92898

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48754

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the phy_detach() function in drivers/net/phy/phy_device.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

100) Resource management error

EUVDB-ID: #VU92978

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48755

CWE-ID: CWE-399 - Resource Management Errors

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to resource management error within the EMIT() function in arch/powerpc/net/bpf_jit_comp64.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

101) NULL pointer dereference

EUVDB-ID: #VU92915

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48756

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the msm_dsi_phy_driver_unregister() function in drivers/gpu/drm/msm/dsi/phy/dsi_phy.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

102) Resource management error

EUVDB-ID: #VU92960

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48758

CWE-ID: CWE-399 - Resource Management Errors

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to resource management error within the bnx2fc_bind_pcidev(), bnx2fc_indicate_netevent(), bnx2fc_vport_destroy(), bnx2fc_if_create(), __bnx2fc_destroy(), bnx2fc_destroy_work() and bnx2fc_ulp_exit() functions in drivers/scsi/bnx2fc/bnx2fc_fcoe.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

103) Race condition

EUVDB-ID: #VU92931

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48759

CWE-ID: CWE-362 - Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a race condition within the rpmsg_ctrldev_release_device(), rpmsg_chrdev_probe() and rpmsg_chrdev_remove() functions in drivers/rpmsg/rpmsg_char.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

104) Buffer overflow

EUVDB-ID: #VU92976

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48760

CWE-ID: CWE-119 - Memory corruption

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory corruption within the usb_kill_urb() and usb_poison_urb() functions in drivers/usb/core/urb.c, within the __usb_hcd_giveback_urb() function in drivers/usb/core/hcd.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

105) Resource management error

EUVDB-ID: #VU92979

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48761

CWE-ID: CWE-399 - Resource Management Errors

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to resource management error within the xhci_plat_suspend() function in drivers/usb/host/xhci-plat.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

106) Memory leak

EUVDB-ID: #VU92887

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48763

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the kvm_vcpu_ioctl_x86_set_vcpu_events() function in arch/x86/kvm/x86.c, within the nested_vmx_hardware_setup() function in arch/x86/kvm/vmx/nested.c, within the svm_set_efer() function in arch/x86/kvm/svm/svm.c, within the svm_free_nested() and svm_set_nested_state() functions in arch/x86/kvm/svm/nested.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

107) Resource management error

EUVDB-ID: #VU93276

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48765

CWE-ID: CWE-399 - Resource Management Errors

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to resource management error within the kvm_apic_set_state() function in arch/x86/kvm/lapic.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

108) Resource management error

EUVDB-ID: #VU93290

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48766

CWE-ID: CWE-399 - Resource Management Errors

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to resource management error within the dcn301_fpu_init_soc_bounding_box() function in drivers/gpu/drm/amd/display/dc/dml/dcn301/dcn301_fpu.c, within the set_wm_ranges() function in drivers/gpu/drm/amd/display/dc/dcn301/dcn301_resource.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

109) Memory leak

EUVDB-ID: #VU92889

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48767

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the restore_deleg_ino() function in fs/ceph/file.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

110) Memory leak

EUVDB-ID: #VU92890

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48768

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the trace_action_create() function in kernel/trace/trace_events_hist.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

111) Buffer overflow

EUVDB-ID: #VU93248

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48769

CWE-ID: CWE-119 - Memory corruption

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory corruption within the efi_systab_report_header() function in drivers/firmware/efi/efi.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

112) Resource management error

EUVDB-ID: #VU92980

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48770

CWE-ID: CWE-399 - Resource Management Errors

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to resource management error within the BPF_CALL_4() function in kernel/bpf/stackmap.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

113) Use-after-free

EUVDB-ID: #VU92899

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48771

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the vmw_kms_helper_buffer_finish() function in drivers/gpu/drm/vmwgfx/vmwgfx_kms.c, within the vmw_fence_event_ioctl() function in drivers/gpu/drm/vmwgfx/vmwgfx_fence.c, within the vmw_execbuf_fence_commands(), vmw_execbuf_copy_fence_user() and vmw_execbuf_process() functions in drivers/gpu/drm/vmwgfx/vmwgfx_execbuf.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

114) NULL pointer dereference

EUVDB-ID: #VU93327

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48772

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the lgdt3306a_probe() function in drivers/media/dvb-frontends/lgdt3306a.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

115) NULL pointer dereference

EUVDB-ID: #VU94439

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48773

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the rpcrdma_ep_create() function in net/sunrpc/xprtrdma/verbs.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

116) Memory leak

EUVDB-ID: #VU94409

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48774

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the pt_core_init() function in drivers/dma/ptdma/ptdma-dev.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

117) Memory leak

EUVDB-ID: #VU94408

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48775

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the vmbus_add_channel_kobj() function in drivers/hv/vmbus_drv.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

118) Memory leak

EUVDB-ID: #VU94491

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48776

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the parse_qcomsmem_cleanup() function in drivers/mtd/parsers/qcomsmempart.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

119) Improper error handling

EUVDB-ID: #VU94459

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48777

CWE-ID: CWE-388 - Error Handling

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper error handling within the parse_qcomsmem_part() function in drivers/mtd/parsers/qcomsmempart.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

120) Memory leak

EUVDB-ID: #VU94407

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48778

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the gpmi_nfc_exec_op() and pm_runtime_mark_last_busy() functions in drivers/mtd/nand/raw/gpmi-nand/gpmi-nand.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

121) Infinite loop

EUVDB-ID: #VU94470

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48780

CWE-ID: CWE-835 - Loop with Unreachable Exit Condition ('Infinite Loop')

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to infinite loop within the smc_fback_error_report() and smc_switch_to_fallback() functions in net/smc/af_smc.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

122) Use-after-free

EUVDB-ID: #VU94426

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48783

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the gswip_remove() function in drivers/net/dsa/lantiq_gswip.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

123) Improper locking

EUVDB-ID: #VU94449

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48784

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the cfg80211_event_work() function in net/wireless/core.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

124) Improper locking

EUVDB-ID: #VU94456

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48785

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the mld_newpack() function in net/ipv6/mcast.c, within the EXPORT_SYMBOL() function in net/ipv6/addrconf.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

125) Improper locking

EUVDB-ID: #VU94455

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48786

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the vsock_stream_connect() function in net/vmw_vsock/af_vsock.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

126) Use-after-free

EUVDB-ID: #VU94425

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48787

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the iwl_req_fw_callback() function in drivers/net/wireless/intel/iwlwifi/iwl-drv.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

127) Use-after-free

EUVDB-ID: #VU94424

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48788

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the nvme_rdma_error_recovery_work() function in drivers/nvme/host/rdma.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

128) Use-after-free

EUVDB-ID: #VU94423

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48789

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the nvme_tcp_error_recovery_work() function in drivers/nvme/host/tcp.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

129) Use-after-free

EUVDB-ID: #VU94422

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48790

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the nvme_async_event_work() function in drivers/nvme/host/core.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

130) Use-after-free

EUVDB-ID: #VU94421

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48791

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the pm8001_exec_internal_tmf_task() function in drivers/scsi/pm8001/pm8001_sas.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

131) Use-after-free

EUVDB-ID: #VU94420

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48792

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the mpi_ssp_completion() and mpi_sata_completion() functions in drivers/scsi/pm8001/pm80xx_hwi.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

132) NULL pointer dereference

EUVDB-ID: #VU94441

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48793

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the svm_set_nested_state() function in arch/x86/kvm/svm/nested.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

133) Memory leak

EUVDB-ID: #VU94406

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48794

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the at86rf230_async_error_recover_complete() and at86rf230_async_error_recover() functions in drivers/net/ieee802154/at86rf230.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

134) Use-after-free

EUVDB-ID: #VU94419

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48796

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the dev_iommu_get() function in drivers/iommu/iommu.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

135) Buffer overflow

EUVDB-ID: #VU94477

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48797

CWE-ID: CWE-119 - Memory corruption

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory corruption within the change_pte_range() function in mm/mprotect.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

136) Input validation error

EUVDB-ID: #VU94490

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48798

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation within the io_subchannel_chp_event() function in drivers/s390/cio/device.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

137) Buffer overflow

EUVDB-ID: #VU94478

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48799

CWE-ID: CWE-119 - Memory corruption

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory corruption within the DEFINE_PER_CPU() and perf_cgroup_switch() functions in kernel/events/core.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

138) Improper locking

EUVDB-ID: #VU94454

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48800

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the reclaim_throttle() function in mm/vmscan.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

139) Use-after-free

EUVDB-ID: #VU94416

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48801

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the iio_device_buffer_getfd() function in drivers/iio/industrialio-buffer.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

140) Improper error handling

EUVDB-ID: #VU94460

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48802

CWE-ID: CWE-388 - Error Handling

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper error handling within the smaps_page_accumulate(), smaps_account(), smaps_pte_entry(), smaps_pmd_entry(), pte_to_pagemap_entry() and pagemap_pmd_range() functions in fs/proc/task_mmu.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

141) Out-of-bounds read

EUVDB-ID: #VU94430

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48803

CWE-ID: CWE-125 - Out-of-bounds read

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to an out-of-bounds read error within the drivers/phy/ti/phy-j721e-wiz.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

142) Out-of-bounds read

EUVDB-ID: #VU94431

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48804

CWE-ID: CWE-125 - Out-of-bounds read

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to an out-of-bounds read error within the vt_ioctl() function in drivers/tty/vt/vt_ioctl.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

143) Out-of-bounds read

EUVDB-ID: #VU94432

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48805

CWE-ID: CWE-125 - Out-of-bounds read

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to an out-of-bounds read error within the ax88179_rx_fixup() function in drivers/net/usb/ax88179_178a.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

144) Buffer overflow

EUVDB-ID: #VU94467

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48806

CWE-ID: CWE-119 - Memory corruption

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to memory corruption within the ee1004_eeprom_read() function in drivers/misc/eeprom/ee1004.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

145) Out-of-bounds read

EUVDB-ID: #VU94433

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48807

CWE-ID: CWE-125 - Out-of-bounds read

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to an out-of-bounds read error within the ice_lag_unlink() and ice_lag_event_handler() functions in drivers/net/ethernet/intel/ice/ice_lag.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

146) Memory leak

EUVDB-ID: #VU94405

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48809

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the include/net/dst_metadata.h. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

147) Improper locking

EUVDB-ID: #VU94453

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48810

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the ip6mr_rules_init() function in net/ipv6/ip6mr.c, within the ipmr_rules_init() function in net/ipv4/ipmr.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

148) NULL pointer dereference

EUVDB-ID: #VU94444

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48811

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the init_crq_queue(), __ibmvnic_open() and ibmvnic_open() functions in drivers/net/ethernet/ibm/ibmvnic.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

149) Resource management error

EUVDB-ID: #VU94476

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48812

CWE-ID: CWE-399 - Resource Management Errors

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to resource management error within the gswip_mdio_rd(), gswip_mdio(), gswip_mdio_mask() and gswip_remove() functions in drivers/net/dsa/lantiq_gswip.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

150) Resource management error

EUVDB-ID: #VU94475

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48813

CWE-ID: CWE-399 - Resource Management Errors

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to resource management error within the vsc9959_mdio_bus_alloc() and vsc9959_mdio_bus_free() functions in drivers/net/dsa/ocelot/felix_vsc9959.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

151) Resource management error

EUVDB-ID: #VU94474

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48814

CWE-ID: CWE-399 - Resource Management Errors

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to resource management error within the vsc9953_mdio_bus_alloc() and vsc9953_mdio_bus_free() functions in drivers/net/dsa/ocelot/seville_vsc9953.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

152) Resource management error

EUVDB-ID: #VU94471

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48815

CWE-ID: CWE-399 - Resource Management Errors

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to resource management error within the bcm_sf2_mdio_register() function in drivers/net/dsa/bcm_sf2.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

153) Improper locking

EUVDB-ID: #VU94452

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48816

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the xs_get_srcport() function in net/sunrpc/xprtsock.c, within the rpc_sysfs_xprt_srcaddr_show() function in net/sunrpc/sysfs.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

154) Resource management error

EUVDB-ID: #VU94473

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48817

CWE-ID: CWE-399 - Resource Management Errors

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to resource management error within the ar9331_sw_mbus_init() and ar9331_sw_remove() functions in drivers/net/dsa/qca/ar9331.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

155) Improper error handling

EUVDB-ID: #VU94461

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48818

CWE-ID: CWE-388 - Error Handling

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper error handling within the mv88e6xxx_mdio_register() and mv88e6xxx_mdios_unregister() functions in drivers/net/dsa/mv88e6xxx/chip.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

156) Memory leak

EUVDB-ID: #VU94404

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48820

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the stm32_usbphyc_pll_enable() function in drivers/phy/st/phy-stm32-usbphyc.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

157) Use-after-free

EUVDB-ID: #VU94417

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48821

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the fastrpc_dmabuf_alloc() function in drivers/misc/fastrpc.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

158) Memory leak

EUVDB-ID: #VU94403

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48822

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the ffs_data_put(), ffs_data_new(), ffs_epfiles_destroy() and ffs_func_eps_disable() functions in drivers/usb/gadget/function/f_fs.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

159) Incorrect calculation

EUVDB-ID: #VU94488

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48823

CWE-ID: CWE-682 - Incorrect Calculation

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to incorrect calculation within the qedf_initiate_cleanup() function in drivers/scsi/qedf/qedf_io.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

160) NULL pointer dereference

EUVDB-ID: #VU94445

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48824

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the myrs_cleanup() function in drivers/scsi/myrs.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

161) Resource management error

EUVDB-ID: #VU94485

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48825

CWE-ID: CWE-399 - Resource Management Errors

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to resource management error within the qedf_vport_create() function in drivers/scsi/qedf/qedf_main.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

162) Improper locking

EUVDB-ID: #VU94451

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48826

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the vc4_dsi_host_attach() and vc4_dsi_dev_remove() functions in drivers/gpu/drm/vc4/vc4_dsi.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

163) Buffer overflow

EUVDB-ID: #VU94479

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48827

CWE-ID: CWE-119 - Memory corruption

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory corruption within the nfsd4_encode_read() and nfsd4_encode_read_plus() functions in fs/nfsd/nfs4xdr.c, within the nfsd4_read() function in fs/nfsd/nfs4proc.c, within the nfsd3_proc_read() function in fs/nfsd/nfs3proc.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

164) Integer underflow

EUVDB-ID: #VU94466

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48828

CWE-ID: CWE-191 - Integer underflow

Exploit availability: No

Description

The vulnerability allows a local user to execute arbitrary code.

The vulnerability exists due to integer underflow within the nfsd_setattr() function in fs/nfsd/vfs.c. A local user can execute arbitrary code.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

165) Input validation error

EUVDB-ID: #VU94492

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48829

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation within the svcxdr_decode_sattr3() function in fs/nfsd/nfs3xdr.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

166) Improper locking

EUVDB-ID: #VU94450

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48830

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the LIST_HEAD(), isotp_rcv() and isotp_init() functions in net/can/isotp.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

167) Memory leak

EUVDB-ID: #VU94402

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48831

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the asymmetric_verify() function in security/integrity/digsig_asymmetric.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

168) Resource management error

EUVDB-ID: #VU94481

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48834

CWE-ID: CWE-399 - Resource Management Errors

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to resource management error within the usbtmc_ioctl_request() function in drivers/usb/class/usbtmc.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

169) Improper locking

EUVDB-ID: #VU94448

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48835

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the mpt3sas_base_sync_reply_irqs() function in drivers/scsi/mpt3sas/mpt3sas_base.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

170) Improper locking

EUVDB-ID: #VU94447

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48836

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the aiptek_probe() function in drivers/input/tablet/aiptek.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

171) Integer overflow

EUVDB-ID: #VU94465

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48837

CWE-ID: CWE-190 - Integer overflow

Exploit availability: No

Description

The vulnerability allows a local user to execute arbitrary code.

The vulnerability exists due to integer overflow within the rndis_set_response() function in drivers/usb/gadget/function/rndis.c. A local user can execute arbitrary code.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

172) Use-after-free

EUVDB-ID: #VU94415

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48838

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the usb_gadget_remove_driver(), udc_bind_to_driver() and dev_err() functions in drivers/usb/gadget/udc/core.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

173) Memory leak

EUVDB-ID: #VU94392

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48839

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the tpacket_rcv() and packet_recvmsg() functions in net/packet/af_packet.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

174) Use of uninitialized resource

EUVDB-ID: #VU94463

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48840

CWE-ID: CWE-908 - Use of Uninitialized Resource

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to use of uninitialized resource within the iavf_remove() function in drivers/net/ethernet/intel/iavf/iavf_main.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

175) NULL pointer dereference

EUVDB-ID: #VU94435

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48841

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the ice_update_vsi_tx_ring_stats() function in drivers/net/ethernet/intel/ice/ice_main.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

176) Improper locking

EUVDB-ID: #VU94446

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48842

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the ice_service_task() function in drivers/net/ethernet/intel/ice/ice_main.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

177) NULL pointer dereference

EUVDB-ID: #VU94436

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48843

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the EXPORT_SYMBOL() function in drivers/gpu/drm/drm_connector.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

178) Memory leak

EUVDB-ID: #VU94400

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48844

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the hci_release_dev() function in net/bluetooth/hci_core.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

179) Memory leak

EUVDB-ID: #VU94399

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48846

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the blk_cleanup_queue() function in block/blk-core.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

180) Out-of-bounds read

EUVDB-ID: #VU94428

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48847

CWE-ID: CWE-125 - Out-of-bounds read

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to an out-of-bounds read error within the watch_queue_set_filter() function in kernel/watch_queue.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

181) Resource management error

EUVDB-ID: #VU94484

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48849

CWE-ID: CWE-399 - Resource Management Errors

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to resource management error within the amdgpu_display_framebuffer_init() function in drivers/gpu/drm/amd/amdgpu/amdgpu_display.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

182) NULL pointer dereference

EUVDB-ID: #VU94437

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48850

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the speed_show() function in net/core/net-sysfs.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

183) Use-after-free

EUVDB-ID: #VU94414

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48851

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the tx_complete() function in drivers/staging/gdm724x/gdm_lte.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

184) Memory leak

EUVDB-ID: #VU94398

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48852

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the vc4_hdmi_audio_init() and vc4_hdmi_unbind() functions in drivers/gpu/drm/vc4/vc4_hdmi.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

185) Memory leak

EUVDB-ID: #VU94397

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48853

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the Documentation/DMA-attributes.txt, include/linux/dma-mapping.h, lib/swiotlb.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

186) Use of uninitialized resource

EUVDB-ID: #VU94464

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48855

CWE-ID: CWE-908 - Use of Uninitialized Resource

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to use of uninitialized resource within the inet_diag_msg_sctpasoc_fill() and inet_sctp_diag_fill() functions in net/sctp/sctp_diag.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

187) Memory leak

EUVDB-ID: #VU94396

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48856

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the gfar_get_ts_info() function in drivers/net/ethernet/freescale/gianfar_ethtool.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

188) Use-after-free

EUVDB-ID: #VU94412

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48857

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the nfc_digital_free_device() function in drivers/nfc/port100.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

189) Use-after-free

EUVDB-ID: #VU94411

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48858

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the cmd_alloc_index() and cmd_ent_get() functions in drivers/net/ethernet/mellanox/mlx5/core/cmd.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

190) Memory leak

EUVDB-ID: #VU94395

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48859

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the prestera_switch_set_base_mac_addr() function in drivers/net/ethernet/marvell/prestera/prestera_main.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

191) Memory leak

EUVDB-ID: #VU94394

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48860

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the xemaclite_of_probe() function in drivers/net/ethernet/xilinx/xilinx_emaclite.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

192) Use-after-free

EUVDB-ID: #VU94410

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48861

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the vp_vdpa_remove() function in drivers/vdpa/virtio_pci/vp_vdpa.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

193) Infinite loop

EUVDB-ID: #VU94469

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48862

CWE-ID: CWE-835 - Loop with Unreachable Exit Condition ('Infinite Loop')

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to infinite loop within the vhost_chr_write_iter() function in drivers/vhost/vhost.c, within the vhost_iotlb_add_range_ctx() function in drivers/vhost/iotlb.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

194) Memory leak

EUVDB-ID: #VU94393

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48863

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the dsp_pipeline_destroy() and dsp_pipeline_build() functions in drivers/isdn/mISDN/dsp_pipeline.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

195) Input validation error

EUVDB-ID: #VU94458

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48864

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation within the handle_ctrl_mq() function in drivers/vdpa/mlx5/net/mlx5_vnet.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

196) Out-of-bounds read

EUVDB-ID: #VU94429

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48866

CWE-ID: CWE-125 - Out-of-bounds read

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to an out-of-bounds read error within the thrustmaster_interrupts() function in drivers/hid/hid-thrustmaster.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

197) Improper Verification of Cryptographic Signature

EUVDB-ID: #VU83116

Risk: Medium

CVSSv4.0: 6.7 [CVSS:4.0/AV:A/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/E:P/U:Green]

CVE-ID: CVE-2023-24023

CWE-ID: CWE-347 - Improper Verification of Cryptographic Signature

Exploit availability: No

Description

The vulnerability allows a remote attacker to perform a MitM attack.

The vulnerability exists due to improper verification of cryptographic signature in bluetooth implementation. A remote attacker with physical proximity to the system can perform MitM attack and potentially compromise the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the local network (LAN).

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability. However, proof of concept for this vulnerability is available.

198) Buffer overflow

EUVDB-ID: #VU87748

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-52435

CWE-ID: CWE-119 - Memory corruption

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to a boundary error within the skb_segment() function. A local user can trigger memory corruption and crash the kernel.


Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

199) NULL pointer dereference

EUVDB-ID: #VU90842

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-52573

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the rds_rdma_cm_event_handler_cmn() function in net/rds/rdma_transport.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

200) Reachable Assertion

EUVDB-ID: #VU89383

Risk: Medium

CVSSv4.0: 4.9 [CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Green]

CVE-ID: CVE-2023-52580

CWE-ID: CWE-617 - Reachable Assertion

Exploit availability: No

Description

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to a reachable assertion in net/core/flow_dissector.c. A remote attacker on the local network can send specially crafted PTP ethernet frames to the system and perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the local network (LAN).

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

201) Buffer overflow

EUVDB-ID: #VU93471

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-52622

CWE-ID: CWE-119 - Memory corruption

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to memory corruption within the alloc_flex_gd() and ext4_setup_next_flex_gd() functions in fs/ext4/resize.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

202) Input validation error

EUVDB-ID: #VU93683

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-52658

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation within the esw_inline_mode_to_devlink() and mlx5_devlink_eswitch_mode_set() functions in drivers/net/ethernet/mellanox/mlx5/core/eswitch_offloads.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

203) Double free

EUVDB-ID: #VU90922

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-52667

CWE-ID: CWE-415 - Double Free

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to a double free error within the fs_any_create_groups() function in drivers/net/ethernet/mellanox/mlx5/core/en/fs_tt_redirect.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

204) Memory leak

EUVDB-ID: #VU89988

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-52670

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the virtio_rpmsg_release_device() function in drivers/rpmsg/virtio_rpmsg_bus.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

205) Improper locking

EUVDB-ID: #VU92024

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-52672

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the pipe_resize_ring() and pipe_set_size() functions in fs/pipe.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

206) NULL pointer dereference

EUVDB-ID: #VU90547

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-52675

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the update_events_in_group() function in arch/powerpc/perf/imc-pmu.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

207) Memory leak

EUVDB-ID: #VU91621

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-52735

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the sock_map_unhash(), sock_map_destroy() and sock_map_close() functions in net/core/sock_map.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

208) Improper locking

EUVDB-ID: #VU90740

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-52737

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the extent_fiemap() and unlock_extent() functions in fs/btrfs/extent_io.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

209) Use-after-free

EUVDB-ID: #VU90063

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-52751

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the find_or_create_cached_dir(), spin_unlock() and open_cached_dir() functions in fs/smb/client/cached_dir.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

210) Use-after-free

EUVDB-ID: #VU90068

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-52752

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the seq_printf() and spin_unlock() functions in fs/smb/client/cifs_debug.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

211) Buffer overflow

EUVDB-ID: #VU93622

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-52762

CWE-ID: CWE-119 - Memory corruption

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory corruption within the virtblk_probe() function in drivers/block/virtio_blk.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

212) Out-of-bounds read

EUVDB-ID: #VU91086

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-52766

CWE-ID: CWE-125 - Out-of-bounds read

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to an out-of-bounds read error within the hci_dma_irq_handler() function in drivers/i3c/master/mipi-i3c-hci/dma.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

213) Buffer overflow

EUVDB-ID: #VU93425

Risk: Medium

CVSSv4.0: 2.1 [CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:A/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Green]

CVE-ID: CVE-2023-52775

CWE-ID: CWE-119 - Memory corruption

Exploit availability: No

Description

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to a boundary error within the smcr_clnt_conf_first_link() function in net/smc/af_smc.c when handling SMC DECLINE messages. A remote attacker can send specially crafted SMC DECLINE message to the system, trigger memory corruption and perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

214) Improper error handling

EUVDB-ID: #VU93650

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-52784

CWE-ID: CWE-388 - Error Handling

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper error handling within the bond_setup_by_slave() function in drivers/net/bonding/bond_main.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

215) Resource management error

EUVDB-ID: #VU92966

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-52787

CWE-ID: CWE-399 - Resource Management Errors

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to resource management error within the blk_mq_get_new_requests(), blk_mq_get_cached_request() and blk_mq_submit_bio() functions in block/blk-mq.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

216) Use-after-free

EUVDB-ID: #VU90071

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-52800

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the ath11k_htt_pktlog() function in drivers/net/wireless/ath/ath11k/dp_rx.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

217) Out-of-bounds read

EUVDB-ID: #VU91085

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-52812

CWE-ID: CWE-125 - Out-of-bounds read

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to an out-of-bounds read error within the smu_v13_0_update_pcie_parameters() function in drivers/gpu/drm/amd/pm/swsmu/smu13/smu_v13_0.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

218) Out-of-bounds read

EUVDB-ID: #VU91084

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-52835

CWE-ID: CWE-125 - Out-of-bounds read

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to an out-of-bounds read error within the rb_alloc_aux() function in kernel/events/ring_buffer.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

219) Use-after-free

EUVDB-ID: #VU90080

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-52837

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the nbd_dev_remove(), nbd_release() and IS_ENABLED() functions in drivers/block/nbd.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

220) Use of uninitialized resource

EUVDB-ID: #VU90868

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-52843

CWE-ID: CWE-908 - Use of Uninitialized Resource

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to use of uninitialized resource within the llc_station_ac_send_test_r() function in net/llc/llc_station.c, within the llc_sap_action_send_test_r() function in net/llc/llc_s_ac.c, within the llc_fixup_skb() function in net/llc/llc_input.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

221) Use of uninitialized resource

EUVDB-ID: #VU90867

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-52845

CWE-ID: CWE-908 - Use of Uninitialized Resource

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to use of uninitialized resource within the net/tipc/netlink.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

222) Use-after-free

EUVDB-ID: #VU91055

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-52846

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the prp_create_tagged_frame() function in net/hsr/hsr_forward.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

223) Integer overflow

EUVDB-ID: #VU91178

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-52857

CWE-ID: CWE-190 - Integer overflow

Exploit availability: No

Description

The vulnerability allows a local user to execute arbitrary code.

The vulnerability exists due to integer overflow within the mtk_plane_update_new_state() function in drivers/gpu/drm/mediatek/mtk_drm_plane.c, within the mtk_drm_gem_dumb_create() function in drivers/gpu/drm/mediatek/mtk_drm_gem.c. A local user can execute arbitrary code.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

224) NULL pointer dereference

EUVDB-ID: #VU90426

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-52863

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the axi_fan_control_probe() function in drivers/hwmon/axi-fan-control.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

225) NULL pointer dereference

EUVDB-ID: #VU90423

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-52869

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the pstore_register() function in fs/pstore/platform.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

226) Spoofing attack

EUVDB-ID: #VU89895

Risk: Medium

CVSSv4.0: 2.7 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:U/U:Green]

CVE-ID: CVE-2023-52881

CWE-ID: CWE-451 - User Interface (UI) Misrepresentation of Critical Information (Clickjacking, spoofing)

Exploit availability: No

Description

The vulnerability allows a remote attacker to perform spoofing attack.

The vulnerability exists due to an error within the tcp_ack() function in net/ipv4/tcp_input.c, which can result in system accepting ACK responses for bytes that were never sent. A remote attacker can perform spoofing attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

227) Input validation error

EUVDB-ID: #VU93673

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-52882

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation within the sun50i_h6_ccu_probe() function in drivers/clk/sunxi-ng/ccu-sun50i-h6.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

228) Improper locking

EUVDB-ID: #VU93035

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-52884

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the cyapa_suspend() and cyapa_resume() functions in drivers/input/mouse/cyapa.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

229) Use-after-free

EUVDB-ID: #VU94326

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-52885

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the svc_tcp_listen_data_ready() function in net/sunrpc/svcsock.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

230) Out-of-bounds read

EUVDB-ID: #VU94434

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-52886

CWE-ID: CWE-125 - Out-of-bounds read

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to an out-of-bounds read error within the get_bMaxPacketSize0(), hub_port_init(), hub_port_connect() and usb_reset_and_verify_device() functions in drivers/usb/core/hub.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

231) Resource management error

EUVDB-ID: #VU94364

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-25741

CWE-ID: CWE-399 - Resource Management Errors

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper management of internal resources within the printer_write() in drivers/usb/gadget/function/f_printer.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

232) Race condition

EUVDB-ID: #VU87596

Risk: Medium

CVSSv4.0: 6.6 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Green]

CVE-ID: CVE-2024-26583

CWE-ID: CWE-362 - Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')

Exploit availability: No

Description

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to a race condition between async notify and socket close in TLS implementation in net/tls/tls_sw.c. A remote attacker can send specially crafted traffic to the system, trigger a race condition and perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

233) Error handling

EUVDB-ID: #VU89001

Risk: Medium

CVSSv4.0: 6.6 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Green]

CVE-ID: CVE-2024-26584

CWE-ID: CWE-388 - Error Handling

Exploit availability: No

Description

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to an error when handling backlogging of crypto requests in net/tls/tls_sw.c. A remote attacker can send specially crafted traffic to the system and perform a denial of service attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

234) NULL pointer dereference

EUVDB-ID: #VU90627

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-26615

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the __smc_diag_dump() function in net/smc/smc_diag.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

235) Use-after-free

EUVDB-ID: #VU87344

Risk: Medium

CVSSv4.0: 4.6 [CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Green]

CVE-ID: CVE-2024-26625

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to a use-after-free error in net/llc/af_llc.c when handling orphan sockets. A remote attacker can send specially crafted packets to the system and perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

236) Input validation error

EUVDB-ID: #VU89267

Risk: Medium

CVSSv4.0: 6.6 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Green]

CVE-ID: CVE-2024-26633

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

Description

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to an error in NEXTHDR_FRAGMENT handling within the ip6_tnl_parse_tlv_enc_lim() function in net/ipv6/ip6_tunnel.c. A remote attacker can send specially crafted packets to the system and perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

237) Use of uninitialized resource

EUVDB-ID: #VU90880

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-26635

CWE-ID: CWE-908 - Use of Uninitialized Resource

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to use of uninitialized resource within the cpu_to_be16() function in net/llc/llc_core.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

238) Input validation error

EUVDB-ID: #VU90859

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-26636

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation within the llc_ui_sendmsg() function in net/llc/af_llc.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

239) Access of Uninitialized Pointer

EUVDB-ID: #VU89396

Risk: Medium

CVSSv4.0: 4.6 [CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Green]

CVE-ID: CVE-2024-26641

CWE-ID: CWE-824 - Access of Uninitialized Pointer

Exploit availability: No

Description

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to access to uninitialized data within the __ip6_tnl_rcv() function in net/ipv6/ip6_tunnel.c. A remote attacker can send specially crafted data to the system and perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

240) Improper locking

EUVDB-ID: #VU91535

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-26644

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the create_snapshot() function in fs/btrfs/ioctl.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

241) Resource management error

EUVDB-ID: #VU93260

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-26661

CWE-ID: CWE-399 - Resource Management Errors

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to resource management error within the dcn21_set_abm_immediate_disable() function in drivers/gpu/drm/amd/display/dc/dcn21/dcn21_hwseq.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

242) NULL pointer dereference

EUVDB-ID: #VU92073

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-26663

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the tipc_nl_bearer_add() function in net/tipc/bearer.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

243) Out-of-bounds read

EUVDB-ID: #VU90336

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-26665

CWE-ID: CWE-125 - Out-of-bounds read

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to an out-of-bounds read error within the iptunnel_pmtud_build_icmpv6() function in net/ipv4/ip_tunnel_core.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

244) Division by zero

EUVDB-ID: #VU91379

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-26720

CWE-ID: CWE-369 - Divide By Zero

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to a division by zero error within the wb_dirty_limits() function in mm/page-writeback.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

245) Use-after-free

EUVDB-ID: #VU90210

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-26800

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the struct_group(), tls_do_decryption() and tls_decrypt_sg() functions in net/tls/tls_sw.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

246) NULL pointer dereference

EUVDB-ID: #VU90589

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-26802

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the stmmac_fpe_stop_wq() function in drivers/net/ethernet/stmicro/stmmac/stmmac_main.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

247) NULL pointer dereference

EUVDB-ID: #VU90588

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-26813

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the vfio_platform_set_irq_unmask(), vfio_automasked_irq_handler(), vfio_irq_handler(), vfio_set_trigger(), vfio_platform_set_irq_trigger(), vfio_platform_set_irqs_ioctl(), vfio_platform_irq_init() and vfio_platform_irq_cleanup() functions in drivers/vfio/platform/vfio_platform_irq.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

248) Improper error handling

EUVDB-ID: #VU92058

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-26814

CWE-ID: CWE-388 - Error Handling

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper error handling within the vfio_fsl_mc_set_irq_trigger() function in drivers/vfio/fsl-mc/vfio_fsl_mc_intr.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

249) Out-of-bounds read

EUVDB-ID: #VU91097

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-26842

CWE-ID: CWE-125 - Out-of-bounds read

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to an out-of-bounds read error within the ufshcd_cmd_inflight() and ufshcd_clear_cmd() functions in drivers/ufs/core/ufshcd.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

250) Improper locking

EUVDB-ID: #VU93388

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-26845

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the transport_generic_handle_tmr() function in drivers/target/target_core_transport.c, within the transport_lookup_tmr_lun() and rcu_dereference_raw() functions in drivers/target/target_core_device.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

251) Use of uninitialized resource

EUVDB-ID: #VU90877

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-26863

CWE-ID: CWE-908 - Use of Uninitialized Resource

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to use of uninitialized resource within the hsr_get_node() function in net/hsr/hsr_framereg.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

252) Improper locking

EUVDB-ID: #VU92035

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-26923

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to improper locking within the unix_gc() function in net/unix/garbage.c due to garbage collector does not take into account the risk of embryo getting enqueued during the garbage collection. A local user can execute arbitrary code with elevated privileges.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

253) Information disclosure

EUVDB-ID: #VU91358

Risk: Low

CVSSv4.0: 1.1 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-26935

CWE-ID: CWE-200 - Exposure of sensitive information to an unauthorized actor

Exploit availability: No

Description

The vulnerability allows a local user to gain access to sensitive information.

The vulnerability exists due to information disclosure within the scsi_host_dev_release() function in drivers/scsi/hosts.c. A local user can gain access to sensitive information.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

254) Use-after-free

EUVDB-ID: #VU90186

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-26961

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the mac802154_llsec_key_del_rcu() function in net/mac802154/llsec.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

255) Information disclosure

EUVDB-ID: #VU91360

Risk: Low

CVSSv4.0: 1.1 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-26973

CWE-ID: CWE-200 - Exposure of sensitive information to an unauthorized actor

Exploit availability: No

Description

The vulnerability allows a local user to gain access to sensitive information.

The vulnerability exists due to information disclosure within the fat_encode_fh_nostale() function in fs/fat/nfs.c. A local user can gain access to sensitive information.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

256) Improper locking

EUVDB-ID: #VU90774

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-26976

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the async_pf_execute(), kvm_clear_async_pf_completion_queue(), kvm_check_async_pf_completion() and kvm_setup_async_pf() functions in virt/kvm/async_pf.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

257) Input validation error

EUVDB-ID: #VU94132

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-27015

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation within the nf_flow_tuple_encap() function in net/netfilter/nf_flow_table_ip.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

258) Race condition within a thread

EUVDB-ID: #VU91431

Risk: Low

CVSSv4.0: 1.9 [CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-27019

CWE-ID: CWE-366 - Race Condition within a Thread

Exploit availability: No

Description

The vulnerability allows a local user to gain access to sensitive information.

The vulnerability exists due to a data race within the __nft_obj_type_get() and nft_obj_type_get() functions in net/netfilter/nf_tables_api.c. A local user can gain access to sensitive information.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

259) Race condition within a thread

EUVDB-ID: #VU91432

Risk: Low

CVSSv4.0: 4.4 [CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-27020

CWE-ID: CWE-366 - Race Condition within a Thread

Exploit availability: No

Description

The vulnerability allows a local user to execute arbitrary code.

The vulnerability exists due to a data race within the __nft_expr_type_get() and nft_expr_type_get() functions in net/netfilter/nf_tables_api.c. A local user can execute arbitrary code.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

260) Improper error handling

EUVDB-ID: #VU93453

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-27025

CWE-ID: CWE-388 - Error Handling

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper error handling within the nbd_genl_status() function in drivers/block/nbd.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

261) Resource management error

EUVDB-ID: #VU94105

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-27065

CWE-ID: CWE-399 - Resource Management Errors

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper management of internal resources within the nf_tables_updtable() function in net/netfilter/nf_tables_api.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

262) Improper locking

EUVDB-ID: #VU92026

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-27402

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the pep_sock_enable() and pep_ioctl() functions in net/phonet/pep.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

263) Resource management error

EUVDB-ID: #VU93774

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-27432

CWE-ID: CWE-399 - Resource Management Errors

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to resource management error within the mtk_ppe_start() and mtk_ppe_stop() functions in drivers/net/ethernet/mediatek/mtk_ppe.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

264) Resource management error

EUVDB-ID: #VU93202

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-27437

CWE-ID: CWE-399 - Resource Management Errors

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to resource management error within the vfio_intx_set_signal() function in drivers/vfio/pci/vfio_pci_intrs.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

265) Use of uninitialized resource

EUVDB-ID: #VU93041

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-33619

CWE-ID: CWE-908 - Use of Uninitialized Resource

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to use of uninitialized resource within the efi_free() function in drivers/firmware/efi/libstub/fdt.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

266) NULL pointer dereference

EUVDB-ID: #VU93122

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-35247

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the fpga_region_get(), fpga_region_put(), ATTRIBUTE_GROUPS(), fpga_region_register_full(), ERR_PTR() and EXPORT_SYMBOL_GPL() functions in drivers/fpga/fpga-region.c, within the fpga_region_register_full() function in Documentation/driver-api/fpga/fpga-region.rst. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

267) Use-after-free

EUVDB-ID: #VU90167

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-35789

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the ieee80211_change_station() function in net/mac80211/cfg.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

268) NULL pointer dereference

EUVDB-ID: #VU90554

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-35790

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the hpd_show(), dp_altmode_probe(), dp_altmode_remove() and module_typec_altmode_driver() functions in drivers/usb/typec/altmodes/displayport.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

269) Improper locking

EUVDB-ID: #VU91519

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-35805

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the dm_exception_table_exit() function in drivers/md/dm-snap.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

270) Resource management error

EUVDB-ID: #VU93270

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-35807

CWE-ID: CWE-399 - Resource Management Errors

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to resource management error within the EXT4_DESC_PER_BLOCK() function in fs/ext4/resize.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

271) Resource management error

EUVDB-ID: #VU91612

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-35814

CWE-ID: CWE-399 - Resource Management Errors

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to double allocation of slots within the swiotlb_area_find_slots() function in kernel/dma/swiotlb.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

272) Improper locking

EUVDB-ID: #VU91448

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-35819

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the qman_create_portal(), qm_congestion_task(), qman_create_cgr(), qman_delete_cgr() and qman_update_cgr() functions in drivers/soc/fsl/qbman/qman.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

273) Double free

EUVDB-ID: #VU90923

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-35835

CWE-ID: CWE-415 - Double Free

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to a double free error within the arfs_create_groups() function in drivers/net/ethernet/mellanox/mlx5/core/en_arfs.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

274) Use of uninitialized resource

EUVDB-ID: #VU93435

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-35837

CWE-ID: CWE-908 - Use of Uninitialized Resource

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to use of uninitialized resource within the mvpp2_bm_pool_cleanup() and mvpp2_bm_init() functions in drivers/net/ethernet/marvell/mvpp2/mvpp2_main.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

275) Buffer overflow

EUVDB-ID: #VU91199

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-35848

CWE-ID: CWE-119 - Memory corruption

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to memory corruption within the at24_probe() function in drivers/misc/eeprom/at24.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

276) Memory leak

EUVDB-ID: #VU89984

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-35853

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the mlxsw_sp_acl_tcam_vchunk_migrate_start() and mlxsw_sp_acl_tcam_vregion_migrate() functions in drivers/net/ethernet/mellanox/mlxsw/spectrum_acl_tcam.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

277) Use-after-free

EUVDB-ID: #VU90163

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-35855

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the mlxsw_sp_acl_tcam_ventry_activity_get() function in drivers/net/ethernet/mellanox/mlxsw/spectrum_acl_tcam.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

278) NULL pointer dereference

EUVDB-ID: #VU91235

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-35857

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the icmp_build_probe() function in net/ipv4/icmp.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

279) Use-after-free

EUVDB-ID: #VU90150

Risk: Medium

CVSSv4.0: 4.3 [CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:A/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Green]

CVE-ID: CVE-2024-35861

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a remote non-authenticated attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to a use-after-free error within the cifs_signal_cifsd_for_reconnect() function in fs/smb/client/connect.c. A remote non-authenticated attacker can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the local network (LAN).

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

280) Use-after-free

EUVDB-ID: #VU90152

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-35862

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a remote non-authenticated attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to a use-after-free error within the smb2_is_network_name_deleted() function in fs/smb/client/smb2ops.c. A remote non-authenticated attacker can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

281) Use-after-free

EUVDB-ID: #VU90149

Risk: Medium

CVSSv4.0: 4.3 [CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:A/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Green]

CVE-ID: CVE-2024-35864

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a remote non-authenticated attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to a use-after-free error within the smb2_is_valid_lease_break() function in fs/smb/client/smb2misc.c. A remote non-authenticated attacker can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the local network (LAN).

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

282) Use-after-free

EUVDB-ID: #VU90157

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-35869

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a remote non-authenticated attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to a use-after-free error within the tcon_info_alloc() and tconInfoFree() functions in fs/smb/client/misc.c, within the dfs_cache_remount_fs() function in fs/smb/client/dfs_cache.c, within the get_session(), __dfs_mount_share() and dfs_mount_share() functions in fs/smb/client/dfs.c, within the match_session(), cifs_get_smb_ses(), cifs_mount_put_conns() and cifs_mount() functions in fs/smb/client/connect.c. A remote non-authenticated attacker can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

283) NULL pointer dereference

EUVDB-ID: #VU90508

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-35878

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the of_modalias() function in drivers/of/module.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

284) Buffer overflow

EUVDB-ID: #VU93150

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-35884

CWE-ID: CWE-119 - Memory corruption

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory corruption within the udp_gro_receive() function in net/ipv4/udp_offload.c, within the __udp_is_mcast_sock() function in net/ipv4/udp.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

285) Infinite loop

EUVDB-ID: #VU91413

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-35886

CWE-ID: CWE-835 - Loop with Unreachable Exit Condition ('Infinite Loop')

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to infinite loop within the inet6_dump_fib() function in net/ipv6/ip6_fib.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

286) Input validation error

EUVDB-ID: #VU93427

Risk: Medium

CVSSv4.0: 6.6 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Green]

CVE-ID: CVE-2024-35889

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

Description

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to insufficient validation of user-supplied input within the idpf_rx_process_skb_fields() function in drivers/net/ethernet/intel/idpf/idpf_txrx.c when handling unknown packet types. A remote attacker can send specially crafted packets to the system and perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

287) Improper error handling

EUVDB-ID: #VU93651

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-35890

CWE-ID: CWE-388 - Error Handling

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper error handling within the skb_gro_receive_list() and skb_gro_receive() functions in net/core/skbuff.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

288) Memory leak

EUVDB-ID: #VU93609

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-35893

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the tcf_skbmod_dump() function in net/sched/act_skbmod.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

289) Out-of-bounds read

EUVDB-ID: #VU90309

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-35896

CWE-ID: CWE-125 - Out-of-bounds read

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to an out-of-bounds read error within the do_replace() and compat_do_replace() functions in net/ipv6/netfilter/ip6_tables.c, within the do_replace() and compat_do_replace() functions in net/ipv4/netfilter/ip_tables.c, within the do_replace() and compat_do_replace() functions in net/ipv4/netfilter/arp_tables.c, within the do_replace(), update_counters() and compat_update_counters() functions in net/bridge/netfilter/ebtables.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

290) Race condition within a thread

EUVDB-ID: #VU91427

Risk: Low

CVSSv4.0: 1.1 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-35898

CWE-ID: CWE-366 - Race Condition within a Thread

Exploit availability: No

Description

The vulnerability allows a local user to manipulate data.

The vulnerability exists due to a data race within the nf_tables_flowtable_parse_hook() and nft_flowtable_type_get() functions in net/netfilter/nf_tables_api.c. A local user can manipulate data.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

291) Use-after-free

EUVDB-ID: #VU90160

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-35899

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the nf_tables_module_exit() function in net/netfilter/nf_tables_api.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

292) Incorrect calculation

EUVDB-ID: #VU93613

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-35900

CWE-ID: CWE-682 - Incorrect Calculation

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to incorrect calculation within the nf_tables_addchain() function in net/netfilter/nf_tables_api.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

293) Out-of-bounds read

EUVDB-ID: #VU90307

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-35905

CWE-ID: CWE-125 - Out-of-bounds read

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to an out-of-bounds read error within the check_stack_access_within_bounds() function in kernel/bpf/verifier.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

294) Division by zero

EUVDB-ID: #VU91373

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-35925

CWE-ID: CWE-369 - Divide By Zero

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to a division by zero error within the blk_rq_stat_init() function in block/blk-stat.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

295) Improper locking

EUVDB-ID: #VU92020

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-35934

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the smc_pnet_create_pnetids_list() function in net/smc/smc_pnet.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

296) Out-of-bounds read

EUVDB-ID: #VU91391

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-35949

CWE-ID: CWE-125 - Out-of-bounds read

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to an out-of-bounds read error within the __btrfs_check_leaf() and __btrfs_check_node() functions in fs/btrfs/tree-checker.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

297) Use-after-free

EUVDB-ID: #VU92212

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-35950

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the drm_client_modeset_probe() function in drivers/gpu/drm/drm_client_modeset.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

298) Information disclosure

EUVDB-ID: #VU91343

Risk: Low

CVSSv4.0: 1.1 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-35956

CWE-ID: CWE-200 - Exposure of sensitive information to an unauthorized actor

Exploit availability: No

Description

The vulnerability allows a local user to gain access to sensitive information.

The vulnerability exists due to information disclosure within the btrfs_subvolume_reserve_metadata() function in fs/btrfs/root-tree.c, within the create_subvol() and create_snapshot() functions in fs/btrfs/ioctl.c, within the btrfs_delete_subvolume() and btrfs_end_transaction() functions in fs/btrfs/inode.c. A local user can gain access to sensitive information.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

299) Resource management error

EUVDB-ID: #VU93255

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-35958

CWE-ID: CWE-399 - Resource Management Errors

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to resource management error within the ena_unmap_tx_buff() and ena_free_tx_bufs() functions in drivers/net/ethernet/amazon/ena/ena_netdev.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

300) Improper Initialization

EUVDB-ID: #VU93351

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-35960

CWE-ID: CWE-665 - Improper Initialization

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper initialization within the add_rule_fg() function in drivers/net/ethernet/mellanox/mlx5/core/fs_core.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

301) Improper locking

EUVDB-ID: #VU92019

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-35961

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the mlx5_sf_dev_remove() function in drivers/net/ethernet/mellanox/mlx5/core/sf/dev/driver.c, within the mlx5_init_one_devl_locked(), mlx5_init_one(), mlx5_uninit_one(), mlx5_init_one_light(), mlx5_uninit_one_light(), probe_one() and remove_one() functions in drivers/net/ethernet/mellanox/mlx5/core/main.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

302) Input validation error

EUVDB-ID: #VU93176

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-35962

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation within the do_replace() and compat_do_replace() functions in net/ipv6/netfilter/ip6_tables.c, within the do_replace() and compat_do_replace() functions in net/ipv4/netfilter/ip_tables.c, within the do_replace() and compat_do_replace() functions in net/ipv4/netfilter/arp_tables.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

303) Use-after-free

EUVDB-ID: #VU90144

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-35979

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the raid1_write_request() function in drivers/md/raid1.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

304) Buffer overflow

EUVDB-ID: #VU92955

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-35995

CWE-ID: CWE-119 - Memory corruption

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory corruption within the show_cppc_data(), acpi_cppc_processor_probe(), cpc_read() and cpc_write() functions in drivers/acpi/cppc_acpi.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

305) Infinite loop

EUVDB-ID: #VU91412

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-35997

CWE-ID: CWE-835 - Loop with Unreachable Exit Condition ('Infinite Loop')

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to infinite loop within the __i2c_hid_command() and i2c_hid_irq() functions in drivers/hid/i2c-hid/i2c-hid-core.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

306) Reachable Assertion

EUVDB-ID: #VU90907

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-36000

CWE-ID: CWE-617 - Reachable Assertion

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to reachable assertion within the alloc_huge_page() function in mm/hugetlb.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

307) Resource management error

EUVDB-ID: #VU93281

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-36004

CWE-ID: CWE-399 - Resource Management Errors

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to resource management error within the i40e_init_module() function in drivers/net/ethernet/intel/i40e/i40e_main.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

308) Resource management error

EUVDB-ID: #VU93190

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-36005

CWE-ID: CWE-399 - Resource Management Errors

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to resource management error within the nft_netdev_event() function in net/netfilter/nft_chain_filter.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

309) NULL pointer dereference

EUVDB-ID: #VU92068

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-36008

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the ip_route_use_hint() function in net/ipv4/route.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

310) Out-of-bounds read

EUVDB-ID: #VU93081

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-36017

CWE-ID: CWE-125 - Out-of-bounds read

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to an out-of-bounds read error within the do_setvfinfo() function in net/core/rtnetlink.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

311) Use of uninitialized resource

EUVDB-ID: #VU91675

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-36020

CWE-ID: CWE-908 - Use of Uninitialized Resource

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to use of uninitialized resource within the i40e_reset_all_vfs() function in drivers/net/ethernet/intel/i40e/i40e_virtchnl_pf.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

312) Improper Initialization

EUVDB-ID: #VU91548

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-36021

CWE-ID: CWE-665 - Improper Initialization

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper initialization within the hclge_init_ae_dev() and hclge_comm_cmd_uninit() functions in drivers/net/ethernet/hisilicon/hns3/hns3pf/hclge_main.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

313) Off-by-one

EUVDB-ID: #VU91172

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-36025

CWE-ID: CWE-193 - Off-by-one Error

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to an off-by-one error within the qla_edif_app_getstats() function in drivers/scsi/qla2xxx/qla_edif.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

314) Infinite loop

EUVDB-ID: #VU93062

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-36288

CWE-ID: CWE-835 - Loop with Unreachable Exit Condition ('Infinite Loop')

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to infinite loop within the gss_read_proxy_verf() function in net/sunrpc/auth_gss/svcauth_gss.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

315) Out-of-bounds read

EUVDB-ID: #VU93022

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-36477

CWE-ID: CWE-125 - Out-of-bounds read

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to an out-of-bounds read error within the tpm_tis_spi_write_bytes() function in drivers/char/tpm/tpm_tis_spi_main.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

316) NULL pointer dereference

EUVDB-ID: #VU93029

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-36478

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the nullb_update_nr_hw_queues(), nullb_device_power_store(), null_add_dev() and null_create_dev() functions in drivers/block/null_blk/main.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

317) NULL pointer dereference

EUVDB-ID: #VU93123

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-36479

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the fpga_bridge_disable(), of_fpga_bridge_get(), fpga_bridge_dev_match(), fpga_bridge_get(), fpga_bridge_put(), ATTRIBUTE_GROUPS(), fpga_bridge_register() and ERR_PTR() functions in drivers/fpga/fpga-bridge.c, within the fpga_bridge_register() function in Documentation/driver-api/fpga/fpga-bridge.rst. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

318) Use of uninitialized resource

EUVDB-ID: #VU90975

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-36889

CWE-ID: CWE-908 - Use of Uninitialized Resource

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to use of uninitialized resource within the mptcp_stream_connect() function in net/mptcp/protocol.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

319) Resource management error

EUVDB-ID: #VU93391

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-36890

CWE-ID: CWE-399 - Resource Management Errors

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to resource management error within the include/linux/slab.h. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

320) Improper locking

EUVDB-ID: #VU90735

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-36894

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the ffs_user_copy_worker() and ffs_epfile_async_io_complete() functions in drivers/usb/gadget/function/f_fs.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

321) Use-after-free

EUVDB-ID: #VU90048

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-36899

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the gpio_chrdev_release() function in drivers/gpio/gpiolib-cdev.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

322) Improper Initialization

EUVDB-ID: #VU91547

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-36900

CWE-ID: CWE-665 - Improper Initialization

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper initialization within the hclgevf_init_hdev() and hclge_comm_cmd_uninit() functions in drivers/net/ethernet/hisilicon/hns3/hns3vf/hclgevf_main.c, within the hclge_init_ae_dev() and pci_free_irq_vectors() functions in drivers/net/ethernet/hisilicon/hns3/hns3pf/hclge_main.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

323) NULL pointer dereference

EUVDB-ID: #VU91224

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-36901

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the ip6_output() function in net/ipv6/ip6_output.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

324) NULL pointer dereference

EUVDB-ID: #VU91222

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-36902

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the __fib6_rule_action() function in net/ipv6/fib6_rules.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

325) Use-after-free

EUVDB-ID: #VU90047

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-36904

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the tcp_twsk_unique() function in net/ipv4/tcp_ipv4.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

326) Use-after-free

EUVDB-ID: #VU93085

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-36909

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the vmbus_free_ring() function in drivers/hv/channel.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

327) Use-after-free

EUVDB-ID: #VU93345

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-36910

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the hv_uio_cleanup() and hv_uio_probe() functions in drivers/uio/uio_hv_generic.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

328) Use-after-free

EUVDB-ID: #VU93346

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-36911

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the free_netvsc_device() function in drivers/net/hyperv/netvsc.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

329) Information disclosure

EUVDB-ID: #VU91324

Risk: Low

CVSSv4.0: 1.1 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-36912

CWE-ID: CWE-200 - Exposure of sensitive information to an unauthorized actor

Exploit availability: No

Description

The vulnerability allows a local user to gain access to sensitive information.

The vulnerability exists due to information disclosure within the __vmbus_establish_gpadl() and kfree() functions in drivers/hv/channel.c. A local user can gain access to sensitive information.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

330) Information disclosure

EUVDB-ID: #VU91323

Risk: Low

CVSSv4.0: 1.1 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-36913

CWE-ID: CWE-200 - Exposure of sensitive information to an unauthorized actor

Exploit availability: No

Description

The vulnerability allows a local user to gain access to sensitive information.

The vulnerability exists due to information disclosure within the vmbus_connect() and vmbus_disconnect() functions in drivers/hv/connection.c. A local user can gain access to sensitive information.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

331) Out-of-bounds read

EUVDB-ID: #VU90269

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-36914

CWE-ID: CWE-125 - Out-of-bounds read

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to an out-of-bounds read error within the dm_resume(), get_highest_refresh_rate_mode() and amdgpu_dm_commit_audio() functions in drivers/gpu/drm/amd/display/amdgpu_dm/amdgpu_dm.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

332) Out-of-bounds read

EUVDB-ID: #VU90268

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-36915

CWE-ID: CWE-125 - Out-of-bounds read

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to an out-of-bounds read error within the nfc_llcp_setsockopt() function in net/nfc/llcp_sock.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

333) Out-of-bounds read

EUVDB-ID: #VU90273

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-36916

CWE-ID: CWE-125 - Out-of-bounds read

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to an out-of-bounds read error within the iocg_kick_delay() function in block/blk-iocost.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

334) Buffer overflow

EUVDB-ID: #VU92094

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-36917

CWE-ID: CWE-119 - Memory corruption

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to memory corruption within the blk_ioctl_discard() function in block/ioctl.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

335) Improper locking

EUVDB-ID: #VU92010

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-36919

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the bnx2fc_free_session_resc() function in drivers/scsi/bnx2fc/bnx2fc_tgt.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

336) Use of uninitialized resource

EUVDB-ID: #VU90864

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-36923

CWE-ID: CWE-908 - Use of Uninitialized Resource

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to use of uninitialized resource within the v9fs_evict_inode() function in fs/9p/vfs_inode.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

337) Out-of-bounds read

EUVDB-ID: #VU90266

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-36934

CWE-ID: CWE-125 - Out-of-bounds read

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to an out-of-bounds read error within the bnad_debugfs_write_regrd() and bnad_debugfs_write_regwr() functions in drivers/net/ethernet/brocade/bna/bnad_debugfs.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

338) NULL pointer dereference

EUVDB-ID: #VU90529

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-36937

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the __xdp_do_redirect_frame(), EXPORT_SYMBOL_GPL(), xdp_do_generic_redirect_map() and xdp_do_generic_redirect() functions in net/core/filter.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

339) Improper error handling

EUVDB-ID: #VU92054

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-36939

CWE-ID: CWE-388 - Error Handling

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper error handling within the nfs_net_init() function in fs/nfs/inode.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

340) Double Free

EUVDB-ID: #VU90885

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-36940

CWE-ID: CWE-415 - Double Free

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to a double free error within the pinctrl_enable() function in drivers/pinctrl/core.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

341) Information disclosure

EUVDB-ID: #VU91322

Risk: Low

CVSSv4.0: 1.1 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-36945

CWE-ID: CWE-200 - Exposure of sensitive information to an unauthorized actor

Exploit availability: No

Description

The vulnerability allows a local user to gain access to sensitive information.

The vulnerability exists due to information disclosure within the smc_ib_find_route() function in net/smc/smc_ib.c. A local user can gain access to sensitive information.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

342) Buffer overflow

EUVDB-ID: #VU93469

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-36946

CWE-ID: CWE-119 - Memory corruption

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to memory corruption within the rtm_phonet_notify() function in net/phonet/pn_netlink.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

343) Improper locking

EUVDB-ID: #VU93436

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-36949

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the kgd2kfd_suspend() and kgd2kfd_resume() functions in drivers/gpu/drm/amd/amdkfd/kfd_device.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

344) Out-of-bounds read

EUVDB-ID: #VU90819

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-36960

CWE-ID: CWE-125 - Out-of-bounds read

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to an out-of-bounds read error within the vmw_event_fence_action_create() function in drivers/gpu/drm/vmwgfx/vmwgfx_fence.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

345) Improper privilege management

EUVDB-ID: #VU93734

Risk: Low

CVSSv4.0: 1.1 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-36964

CWE-ID: CWE-269 - Improper Privilege Management

Exploit availability: No

Description

The vulnerability allows a local user to read and manipulate data.

The vulnerability exists due to improperly imposed permissions within the p9mode2perm() function in fs/9p/vfs_inode.c. A local user can read and manipulate data.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

346) Buffer overflow

EUVDB-ID: #VU93307

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-36965

CWE-ID: CWE-119 - Memory corruption

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to memory corruption within the scp_elf_read_ipi_buf_addr() and scp_ipi_init() functions in drivers/remoteproc/mtk_scp.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

347) Memory leak

EUVDB-ID: #VU91561

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-36967

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the tpm2_key_encode() function in security/keys/trusted-keys/trusted_tpm2.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

348) Division by zero

EUVDB-ID: #VU91563

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-36969

CWE-ID: CWE-369 - Divide By Zero

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to a division by zero error within the setup_dsc_config() function in drivers/gpu/drm/amd/display/dc/dsc/dc_dsc.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

349) Use-after-free

EUVDB-ID: #VU91597

Risk: Critical

CVSSv4.0: 8.5 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:A/U:Red]

CVE-ID: CVE-2024-36971

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a remote attacker to execute arbitrary code on the system.

The vulnerability exists due to a use-after-free error within the xfrm_link_failure() function in net/xfrm/xfrm_policy.c, within the dst_entry ip6_dst_check() and ip6_dst_check() functions in net/ipv6/route.c, within the dst_entry ipv4_dst_check() and ip_do_redirect() functions in net/ipv4/route.c. A remote attacker can send specially crafted packets to the system and execute arbitrary code.

Note, the vulnerability is being actively exploited in the wild.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

Yes. This vulnerability is being exploited in the wild.

350) Input validation error

EUVDB-ID: #VU93310

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-36974

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation within the taprio_parse_mqprio_opt() function in net/sched/sch_taprio.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

351) Race condition

EUVDB-ID: #VU93374

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-36975

CWE-ID: CWE-362 - Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to a race condition within the tpm2_key_encode() function in security/keys/trusted-keys/trusted_tpm2.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

352) Out-of-bounds read

EUVDB-ID: #VU92332

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-36978

CWE-ID: CWE-125 - Out-of-bounds read

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to an out-of-bounds read error within the multiq_tune() function in net/sched/sch_multiq.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

353) NULL pointer dereference

EUVDB-ID: #VU93124

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-37021

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the ATTRIBUTE_GROUPS(), fpga_mgr_dev_match(), EXPORT_SYMBOL_GPL(), fpga_mgr_unlock(), fpga_mgr_register_full(), ERR_PTR(), fpga_mgr_register(), devm_fpga_mgr_unregister(), devm_fpga_mgr_register_full() and devm_fpga_mgr_register() functions in drivers/fpga/fpga-mgr.c, within the fpga_mgr_register() and fpga_mgr_register_full() functions in Documentation/driver-api/fpga/fpga-mgr.rst. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

354) Improper locking

EUVDB-ID: #VU93342

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-37078

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the nilfs_segctor_prepare_write() function in fs/nilfs2/segment.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

355) Race condition

EUVDB-ID: #VU93373

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-37354

CWE-ID: CWE-362 - Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to a race condition within the btrfs_log_prealloc_extents() function in fs/btrfs/tree-log.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

356) Use of uninitialized resource

EUVDB-ID: #VU93042

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-38381

CWE-ID: CWE-908 - Use of Uninitialized Resource

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to use of uninitialized resource within the nci_core_ntf_packet() and nci_rx_work() functions in net/nfc/nci/core.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

357) Memory leak

EUVDB-ID: #VU93018

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-38388

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the wmfw_convert_flags(), hda_cs_dsp_add_kcontrol(), hda_cs_dsp_control_add() and hda_cs_dsp_control_remove() functions in sound/pci/hda/hda_cs_dsp_ctl.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

358) NULL pointer dereference

EUVDB-ID: #VU93031

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-38390

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the a6xx_gpu_init() function in drivers/gpu/drm/msm/adreno/a6xx_gpu.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

359) Out-of-bounds read

EUVDB-ID: #VU92331

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-38540

CWE-ID: CWE-125 - Out-of-bounds read

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to an out-of-bounds read error within the bnxt_qplib_create_qp() function in drivers/infiniband/hw/bnxt_re/qplib_fp.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

360) Buffer overflow

EUVDB-ID: #VU92376

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-38541

CWE-ID: CWE-119 - Memory corruption

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to memory corruption within the of_modalias() function in drivers/of/module.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

361) Buffer overflow

EUVDB-ID: #VU93344

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-38544

CWE-ID: CWE-119 - Memory corruption

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory corruption within the rxe_comp_queue_pkt() function in drivers/infiniband/sw/rxe/rxe_comp.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

362) Use-after-free

EUVDB-ID: #VU92306

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-38545

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the alloc_cqc(), free_cqc() and hns_roce_cq_event() functions in drivers/infiniband/hw/hns/hns_roce_cq.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

363) NULL pointer dereference

EUVDB-ID: #VU92351

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-38546

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the vc4_hdmi_audio_init() function in drivers/gpu/drm/vc4/vc4_hdmi.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

364) NULL pointer dereference

EUVDB-ID: #VU92350

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-38547

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the load_video_binaries() function in drivers/staging/media/atomisp/pci/sh_css.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

365) NULL pointer dereference

EUVDB-ID: #VU92349

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-38548

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the cdns_mhdp_atomic_enable() function in drivers/gpu/drm/bridge/cadence/cdns-mhdp8546-core.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

366) Resource management error

EUVDB-ID: #VU93390

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-38549

CWE-ID: CWE-399 - Resource Management Errors

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to resource management error within the mtk_drm_gem_init() function in drivers/gpu/drm/mediatek/mtk_drm_gem.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

367) NULL pointer dereference

EUVDB-ID: #VU92348

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-38550

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the kirkwood_dma_hw_params() function in sound/soc/kirkwood/kirkwood-dma.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

368) Out-of-bounds read

EUVDB-ID: #VU92330

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-38552

CWE-ID: CWE-125 - Out-of-bounds read

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to an out-of-bounds read error within the cm_helper_translate_curve_to_hw_format() function in drivers/gpu/drm/amd/display/dc/dcn10/dcn10_cm_common.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

369) Improper locking

EUVDB-ID: #VU92369

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-38553

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the fec_set_mac_address() function in drivers/net/ethernet/freescale/fec_main.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

370) Use-after-free

EUVDB-ID: #VU92307

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-38555

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the cmd_comp_notifier() function in drivers/net/ethernet/mellanox/mlx5/core/cmd.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

371) Out-of-bounds read

EUVDB-ID: #VU92329

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-38556

CWE-ID: CWE-125 - Out-of-bounds read

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to an out-of-bounds read error within the cmd_work_handler(), wait_func() and mlx5_cmd_invoke() functions in drivers/net/ethernet/mellanox/mlx5/core/cmd.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

372) Improper locking

EUVDB-ID: #VU92368

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-38557

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the enable_mpesw() and mlx5_lag_add_devices() functions in drivers/net/ethernet/mellanox/mlx5/core/lag/mpesw.c, within the mlx5_disable_lag() and mlx5_do_bond() functions in drivers/net/ethernet/mellanox/mlx5/core/lag/lag.c, within the esw_offloads_cleanup(), mlx5_esw_offloads_rep_load(), esw_destroy_offloads_acl_tables() and mlx5_eswitch_reload_reps() functions in drivers/net/ethernet/mellanox/mlx5/core/eswitch_offloads.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

373) Input validation error

EUVDB-ID: #VU94117

Risk: Medium

CVSSv4.0: 4.9 [CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Green]

CVE-ID: CVE-2024-38558

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

Description

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to insufficient validation of user-supplied input when parsing ICMPv6 packets within the parse_icmpv6() function in net/openvswitch/flow.c. A remote attacker can send specially crafted packets to the system and perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the local network (LAN).

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

374) Out-of-bounds read

EUVDB-ID: #VU92328

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-38559

CWE-ID: CWE-125 - Out-of-bounds read

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to an out-of-bounds read error within the qedf_dbg_debug_cmd_write() function in drivers/scsi/qedf/qedf_debugfs.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

375) Out-of-bounds read

EUVDB-ID: #VU92327

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-38560

CWE-ID: CWE-125 - Out-of-bounds read

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to an out-of-bounds read error within the bfad_debugfs_write_regrd() and bfad_debugfs_write_regwr() functions in drivers/scsi/bfa/bfad_debugfs.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

376) Permissions, Privileges, and Access Controls

EUVDB-ID: #VU93849

Risk: Low

CVSSv4.0: 1.1 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-38564

CWE-ID: CWE-264 - Permissions, Privileges, and Access Controls

Exploit availability: No

Description

The vulnerability allows a local user to bypass certain security restrictions.

The vulnerability exists due to improper checks within with bpf_prog_attach_check_attach_type() function in kernel/bpf/syscall.c. A local user can bypass certain security restrictions.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

377) Resource management error

EUVDB-ID: #VU93836

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-38565

CWE-ID: CWE-399 - Resource Management Errors

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to resource management error within the ar5523_probe() function in drivers/net/wireless/ath/ar5523/ar5523.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

378) Input validation error

EUVDB-ID: #VU92370

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-38567

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation within the carl9170_usb_probe() function in drivers/net/wireless/ath/carl9170/usb.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

379) Out-of-bounds read

EUVDB-ID: #VU92325

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-38568

CWE-ID: CWE-125 - Out-of-bounds read

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to an out-of-bounds read error within the hns3_pmu_validate_event_group() function in drivers/perf/hisilicon/hns3_pmu.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

380) Use-after-free

EUVDB-ID: #VU92309

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-38570

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the gfs2_gl_hash_clear() function in fs/gfs2/super.c, within the init_sbd() function in fs/gfs2/ops_fstype.c, within the gdlm_ast(), gdlm_bast() and gdlm_put_lock() functions in fs/gfs2/lock_dlm.c, within the glock_blocked_by_withdraw() and gfs2_gl_hash_clear() functions in fs/gfs2/glock.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

381) NULL pointer dereference

EUVDB-ID: #VU92346

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-38571

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the compute_intercept_slope() function in drivers/thermal/qcom/tsens.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

382) NULL pointer dereference

EUVDB-ID: #VU92345

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-38573

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the cppc_cpufreq_get_rate() and hisi_cppc_cpufreq_get_rate() functions in drivers/cpufreq/cppc_cpufreq.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

383) Out-of-bounds read

EUVDB-ID: #VU92322

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-38578

CWE-ID: CWE-125 - Out-of-bounds read

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to an out-of-bounds read error within the write_tag_66_packet() function in fs/ecryptfs/keystore.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

384) Buffer overflow

EUVDB-ID: #VU92953

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-38579

CWE-ID: CWE-119 - Memory corruption

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory corruption within the spu2_dump_omd() function in drivers/crypto/bcm/spu2.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

385) Improper locking

EUVDB-ID: #VU92367

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-38580

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the __ep_eventpoll_poll() function in fs/eventpoll.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

386) Use-after-free

EUVDB-ID: #VU92310

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-38581

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the amdgpu_mes_remove_ring() function in drivers/gpu/drm/amd/amdgpu/amdgpu_mes.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

387) Improper locking

EUVDB-ID: #VU92366

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-38582

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the nilfs_segctor_sync(), nilfs_segctor_wakeup(), nilfs_segctor_notify() and nilfs_segctor_destroy() functions in fs/nilfs2/segment.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

388) Use-after-free

EUVDB-ID: #VU92311

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-38583

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the nilfs_segctor_start_timer(), nilfs_construct_dsync_segment(), nilfs_segctor_notify(), nilfs_segctor_thread(), nilfs_segctor_new() and nilfs_segctor_destroy() functions in fs/nilfs2/segment.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

389) Buffer overflow

EUVDB-ID: #VU93134

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-38586

CWE-ID: CWE-119 - Memory corruption

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory corruption within the rtl8169_doorbell() and rtl8169_start_xmit() functions in drivers/net/ethernet/realtek/r8169_main.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

390) Out-of-bounds read

EUVDB-ID: #VU92321

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-38587

CWE-ID: CWE-125 - Out-of-bounds read

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to an out-of-bounds read error within the get_word() function in drivers/staging/speakup/main.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

391) Use-after-free

EUVDB-ID: #VU92312

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-38588

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the lookup_rec(), ftrace_location_range(), ftrace_process_locs(), ftrace_release_mod() and ftrace_free_mem() functions in kernel/trace/ftrace.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

392) Resource management error

EUVDB-ID: #VU93087

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-38590

CWE-ID: CWE-399 - Resource Management Errors

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to resource management error within the get_cqe_status() function in drivers/infiniband/hw/hns/hns_roce_hw_v2.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

393) Improper locking

EUVDB-ID: #VU92364

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-38591

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the alloc_srqc() and free_srqc() functions in drivers/infiniband/hw/hns/hns_roce_srq.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

394) Improper locking

EUVDB-ID: #VU92363

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-38594

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the tc_taprio_configure() function in drivers/net/ethernet/stmicro/stmmac/stmmac_tc.c, within the stmmac_adjust_time() function in drivers/net/ethernet/stmicro/stmmac/stmmac_ptp.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

395) Improper locking

EUVDB-ID: #VU92361

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-38597

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the gem_interrupt() and gem_init_one() functions in drivers/net/ethernet/sun/sungem.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

396) Out-of-bounds read

EUVDB-ID: #VU92320

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-38598

CWE-ID: CWE-125 - Out-of-bounds read

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to an out-of-bounds read error within the __acquires() function in drivers/md/md-bitmap.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

397) Out-of-bounds read

EUVDB-ID: #VU92319

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-38599

CWE-ID: CWE-125 - Out-of-bounds read

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to an out-of-bounds read error within the do_jffs2_setxattr() function in fs/jffs2/xattr.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

398) Improper locking

EUVDB-ID: #VU92360

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-38600

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the snd_card_disconnect() function in sound/core/init.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

399) Infinite loop

EUVDB-ID: #VU93063

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-38601

CWE-ID: CWE-835 - Loop with Unreachable Exit Condition ('Infinite Loop')

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to infinite loop within the rb_check_list() and ring_buffer_resize() functions in kernel/trace/ring_buffer.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

400) Memory leak

EUVDB-ID: #VU92297

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-38603

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the hns3_pmu_irq_register() function in drivers/perf/hisilicon/hns3_pmu.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

401) NULL pointer dereference

EUVDB-ID: #VU93048

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-38605

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the snd_card_new() function in sound/core/init.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

402) NULL pointer dereference

EUVDB-ID: #VU92341

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-38608

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the mlx5e_resume(), _mlx5e_suspend(), mlx5e_suspend(), _mlx5e_probe() and _mlx5e_remove() functions in drivers/net/ethernet/mellanox/mlx5/core/en_main.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

403) Buffer overflow

EUVDB-ID: #VU93620

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-38616

CWE-ID: CWE-119 - Memory corruption

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory corruption within the carl9170_tx_release() function in drivers/net/wireless/ath/carl9170/tx.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

404) Input validation error

EUVDB-ID: #VU92371

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-38618

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation within the snd_timer_start1() function in sound/core/timer.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

405) Use of uninitialized resource

EUVDB-ID: #VU93082

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-38619

CWE-ID: CWE-908 - Use of Uninitialized Resource

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to use of uninitialized resource within the short_pack() and alauda_check_media() functions in drivers/usb/storage/alauda.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

406) Out-of-bounds read

EUVDB-ID: #VU93025

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-38621

CWE-ID: CWE-125 - Out-of-bounds read

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to an out-of-bounds read error within the stk1160_buffer_done() and stk1160_copy_video() functions in drivers/media/usb/stk1160/stk1160-video.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

407) Double free

EUVDB-ID: #VU93040

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-38627

CWE-ID: CWE-415 - Double Free

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to a double free error within the stm_register_device() function in drivers/hwtracing/stm/core.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

408) Improper locking

EUVDB-ID: #VU93037

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-38628

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the free_ep_fback(), u_audio_set_volume(), u_audio_set_mute() and g_audio_setup() functions in drivers/usb/gadget/function/u_audio.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

409) Use-after-free

EUVDB-ID: #VU93021

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-38630

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the cpu5wdt_exit() function in drivers/watchdog/cpu5wdt.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

410) NULL pointer dereference

EUVDB-ID: #VU93032

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-38633

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the max3100_probe() and max3100_remove() functions in drivers/tty/serial/max3100.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

411) Improper locking

EUVDB-ID: #VU93038

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-38634

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the max3100_sr() and max3100_handlerx() functions in drivers/tty/serial/max3100.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

412) Out-of-bounds read

EUVDB-ID: #VU93027

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-38635

CWE-ID: CWE-125 - Out-of-bounds read

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to an out-of-bounds read error within the sdw_cdns_alloc_pdi() function in drivers/soundwire/cadence_master.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

413) Out-of-bounds read

EUVDB-ID: #VU93080

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-38659

CWE-ID: CWE-125 - Out-of-bounds read

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to an out-of-bounds read error within the enic_set_vf_port() function in drivers/net/ethernet/cisco/enic/enic_main.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

414) Improper locking

EUVDB-ID: #VU93333

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-38661

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the hex2bitmap() function in drivers/s390/crypto/ap_bus.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

415) Improper locking

EUVDB-ID: #VU93034

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-38780

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the sync_print_obj() function in drivers/dma-buf/sync_debug.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

416) Memory leak

EUVDB-ID: #VU93320

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-39276

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the ext4_xattr_block_cache_find() function in fs/ext4/xattr.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

417) Use of uninitialized resource

EUVDB-ID: #VU93337

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-39301

CWE-ID: CWE-908 - Use of Uninitialized Resource

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to use of uninitialized resource within the p9_fcall_init() function in net/9p/client.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

418) NULL pointer dereference

EUVDB-ID: #VU93329

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-39371

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the io_ring_buffer_select() function in io_uring/kbuf.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

419) Use-after-free

EUVDB-ID: #VU93322

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-39463

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the v9fs_cached_dentry_delete() function in fs/9p/vfs_dentry.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

420) Improper locking

EUVDB-ID: #VU93335

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-39468

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the smb2_find_smb_tcon() function in fs/smb/client/smb2transport.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

421) Improper error handling

EUVDB-ID: #VU93336

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-39469

CWE-ID: CWE-388 - Error Handling

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper error handling within the nilfs_empty_dir() function in fs/nilfs2/dir.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

422) Out-of-bounds read

EUVDB-ID: #VU93326

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-39471

CWE-ID: CWE-125 - Out-of-bounds read

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to an out-of-bounds read error within the sdma_v4_0_process_trap_irq() function in drivers/gpu/drm/amd/amdgpu/sdma_v4_0.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

423) Out-of-bounds read

EUVDB-ID: #VU93820

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-39472

CWE-ID: CWE-125 - Out-of-bounds read

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to an out-of-bounds read error within the xlog_do_recovery_pass() function in fs/xfs/xfs_log_recover.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

424) Division by zero

EUVDB-ID: #VU93828

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-39475

CWE-ID: CWE-369 - Divide By Zero

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to a division by zero error within the savagefb_probe() function in drivers/video/fbdev/savage/savagefb_driver.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

425) Out-of-bounds read

EUVDB-ID: #VU93821

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-39482

CWE-ID: CWE-125 - Out-of-bounds read

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to an out-of-bounds read error within the bch_dirty_init_thread() and bch_sectors_dirty_init() functions in drivers/md/bcache/writeback.c, within the bch_root_usage() function in drivers/md/bcache/sysfs.c, within the bch_cache_set_alloc() function in drivers/md/bcache/super.c, within the btree_gc_mark_node(), btree_gc_rewrite_node(), btree_gc_recurse(), bch_btree_check_recurse(), bch_btree_check_thread(), bch_btree_check(), bch_btree_map_nodes_recurse() and bch_btree_map_keys_recurse() functions in drivers/md/bcache/btree.c, within the bch_dump_bucket(), __bch_check_keys(), bch_btree_insert_key(), bch_btree_iter_push(), bch_btree_sort_partial() and bch_btree_sort_into() functions in drivers/md/bcache/bset.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

426) Out-of-bounds read

EUVDB-ID: #VU93889

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-39487

CWE-ID: CWE-125 - Out-of-bounds read

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to an out-of-bounds read error within the bond_option_arp_ip_targets_set() function in drivers/net/bonding/bond_options.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

427) Improper error handling

EUVDB-ID: #VU94087

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-39488

CWE-ID: CWE-388 - Error Handling

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper error handling within the arch/arm64/include/asm/asm-bug.h. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

428) Memory leak

EUVDB-ID: #VU94085

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-39490

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the seg6_input_core() function in net/ipv6/seg6_iptunnel.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

429) Memory leak

EUVDB-ID: #VU94086

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-39493

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the adf_device_reset_worker() and adf_dev_aer_schedule_reset() functions in drivers/crypto/qat/qat_common/adf_aer.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

430) Use-after-free

EUVDB-ID: #VU94223

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-39494

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the ima_eventname_init_common() function in security/integrity/ima/ima_template_lib.c, within the ima_collect_measurement() and ima_d_path() functions in security/integrity/ima/ima_api.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

431) Buffer overflow

EUVDB-ID: #VU94313

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-39497

CWE-ID: CWE-119 - Memory corruption

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory corruption within the drm_gem_shmem_mmap() function in drivers/gpu/drm/drm_gem_shmem_helper.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

432) Memory leak

EUVDB-ID: #VU94201

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-39499

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the event_deliver() function in drivers/misc/vmw_vmci/vmci_event.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

433) NULL pointer dereference

EUVDB-ID: #VU94262

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-39500

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the sock_map_close() function in net/core/sock_map.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

434) Improper locking

EUVDB-ID: #VU94277

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-39501

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the uevent_show() function in drivers/base/core.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

435) NULL pointer dereference

EUVDB-ID: #VU94261

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-39502

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the ionic_qcq_enable() function in drivers/net/ethernet/pensando/ionic/ionic_lif.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

436) NULL pointer dereference

EUVDB-ID: #VU94259

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-39505

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the komeda_component_get_avail_scaler() function in drivers/gpu/drm/arm/display/komeda/komeda_pipeline_state.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

437) NULL pointer dereference

EUVDB-ID: #VU94258

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-39506

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the lio_vf_rep_copy_packet() function in drivers/net/ethernet/cavium/liquidio/lio_vf_rep.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

438) Improper locking

EUVDB-ID: #VU94284

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-39507

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the hclge_push_link_status(), hclge_update_link_status(), hclge_uninit_need_wait() and hclge_uninit_client_instance() functions in drivers/net/ethernet/hisilicon/hns3/hns3pf/hclge_main.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

439) Use-after-free

EUVDB-ID: #VU94229

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-39508

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the WORKER_IDLE_TIMEOUT(), io_work_get_acct(), io_worker_exit(), io_wq_dec_running(), __io_worker_busy(), io_wq_worker(), io_wq_worker_running(), io_wq_worker_sleeping(), io_init_new_worker(), init_completion() and io_wq_work_match_item() functions in io_uring/io-wq.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

440) Resource management error

EUVDB-ID: #VU94310

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-39509

CWE-ID: CWE-399 - Resource Management Errors

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to resource management error within the implement() function in drivers/hid/hid-core.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

441) Use-after-free

EUVDB-ID: #VU94226

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-40900

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the cachefiles_flush_reqs() function in fs/cachefiles/daemon.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

442) Out-of-bounds read

EUVDB-ID: #VU94233

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-40901

CWE-ID: CWE-125 - Out-of-bounds read

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to an out-of-bounds read error within the mpt3sas_base_attach() and _base_check_ioc_facts_changes() functions in drivers/scsi/mpt3sas/mpt3sas_base.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

443) Buffer overflow

EUVDB-ID: #VU94296

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-40902

CWE-ID: CWE-119 - Memory corruption

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to memory corruption within the ea_get() function in fs/jfs/xattr.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

444) Use-after-free

EUVDB-ID: #VU94225

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-40903

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the tcpm_register_sink_caps() function in drivers/usb/typec/tcpm/tcpm.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

445) Improper locking

EUVDB-ID: #VU94283

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-40904

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the wdm_int_callback() function in drivers/usb/class/cdc-wdm.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

446) Memory leak

EUVDB-ID: #VU94202

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-40906

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the mlx5_function_teardown() function in drivers/net/ethernet/mellanox/mlx5/core/main.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

447) Input validation error

EUVDB-ID: #VU94316

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-40908

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation within the __bpf_prog_test_run_raw_tp() function in net/bpf/test_run.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

448) Use-after-free

EUVDB-ID: #VU94224

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-40909

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the bpf_obj_get(), bpf_link_defer_dealloc_mult_rcu_gp() and bpf_link_free() functions in kernel/bpf/syscall.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

449) NULL pointer dereference

EUVDB-ID: #VU94256

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-40911

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the cfg80211_get_station() function in net/wireless/util.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

450) Improper locking

EUVDB-ID: #VU94282

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-40912

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the ieee80211_sta_ps_deliver_wakeup() function in net/mac80211/sta_info.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

451) Improper locking

EUVDB-ID: #VU94281

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-40916

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the hdmi_get_modes() function in drivers/gpu/drm/exynos/exynos_hdmi.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

452) NULL pointer dereference

EUVDB-ID: #VU94254

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-40919

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the __hwrm_send() function in drivers/net/ethernet/broadcom/bnxt/bnxt_hwrm.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

453) Improper error handling

EUVDB-ID: #VU94290

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-40923

CWE-ID: CWE-388 - Error Handling

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper error handling within the vmxnet3_rq_destroy_all_rxdataring() function in drivers/net/vmxnet3/vmxnet3_drv.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

454) Buffer overflow

EUVDB-ID: #VU94314

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-40924

CWE-ID: CWE-119 - Memory corruption

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory corruption within the drivers/gpu/drm/i915/gem/i915_gem_object.h. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

455) Use-after-free

EUVDB-ID: #VU94220

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-40927

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the xhci_invalidate_cancelled_tds() and xhci_handle_cmd_set_deq() functions in drivers/usb/host/xhci-ring.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

456) Out-of-bounds read

EUVDB-ID: #VU94234

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-40929

CWE-ID: CWE-125 - Out-of-bounds read

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to an out-of-bounds read error within the iwl_mvm_scan_umac_dwell() and iwl_mvm_scan_umac_dwell_v10() functions in drivers/net/wireless/intel/iwlwifi/mvm/scan.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

457) Use of uninitialized resource

EUVDB-ID: #VU94293

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-40931

CWE-ID: CWE-908 - Use of Uninitialized Resource

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to use of uninitialized resource within the mptcp_stream_connect() function in net/mptcp/protocol.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

458) Memory leak

EUVDB-ID: #VU94204

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-40932

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the vidi_get_modes() function in drivers/gpu/drm/exynos/exynos_drm_vidi.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

459) Memory leak

EUVDB-ID: #VU94205

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-40934

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the logi_dj_recv_switch_to_dj_mode() function in drivers/hid/hid-logitech-dj.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

460) Use-after-free

EUVDB-ID: #VU94219

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-40935

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the cachefiles_daemon_open() function in fs/cachefiles/daemon.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

461) Double free

EUVDB-ID: #VU94289

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-40937

CWE-ID: CWE-415 - Double Free

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to a double free error within the gve_rx_skb_hash() and gve_rx_poll_dqo() functions in drivers/net/ethernet/google/gve/gve_rx_dqo.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

462) Input validation error

EUVDB-ID: #VU94322

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-40940

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation within the mlx5_lag_create_port_sel_table() function in drivers/net/ethernet/mellanox/mlx5/core/lag/port_sel.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

463) Buffer overflow

EUVDB-ID: #VU94315

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-40941

CWE-ID: CWE-119 - Memory corruption

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory corruption within the iwl_mvm_mfu_assert_dump_notif() function in drivers/net/wireless/intel/iwlwifi/mvm/fw.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

464) Memory leak

EUVDB-ID: #VU94207

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-40942

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the mesh_path_discard_frame() function in net/mac80211/mesh_pathtbl.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

465) Improper locking

EUVDB-ID: #VU94278

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-40943

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the __ocfs2_change_file_space() function in fs/ocfs2/file.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

466) NULL pointer dereference

EUVDB-ID: #VU94250

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-40945

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the include/linux/iommu.h. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

467) Out-of-bounds read

EUVDB-ID: #VU94236

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-40953

CWE-ID: CWE-125 - Out-of-bounds read

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to an out-of-bounds read error within the kvm_vcpu_on_spin() function in virt/kvm/kvm_main.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

468) Use-after-free

EUVDB-ID: #VU94217

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-40954

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the sk_common_release() function in net/core/sock.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

469) Use-after-free

EUVDB-ID: #VU94216

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-40956

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the irq_process_work_list() function in drivers/dma/idxd/irq.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

470) Use-after-free

EUVDB-ID: #VU94215

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-40958

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the EXPORT_SYMBOL_GPL() function in net/core/net_namespace.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

471) NULL pointer dereference

EUVDB-ID: #VU94246

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-40959

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the xfrm6_get_saddr() function in net/ipv6/xfrm6_policy.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

472) NULL pointer dereference

EUVDB-ID: #VU94245

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-40960

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the rt6_probe() function in net/ipv6/route.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

473) NULL pointer dereference

EUVDB-ID: #VU94244

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-40961

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the fib6_nh_init() function in net/ipv6/route.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

474) Improper locking

EUVDB-ID: #VU94275

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-40966

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the con_cleanup() function in drivers/tty/vt/vt.c, within the tty_set_ldisc() function in drivers/tty/tty_ldisc.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

475) Improper locking

EUVDB-ID: #VU94274

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-40967

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the imx_uart_console_write() function in drivers/tty/serial/imx.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

476) Resource management error

EUVDB-ID: #VU94300

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-40970

CWE-ID: CWE-399 - Resource Management Errors

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to resource management error within the axi_desc_alloc(), axi_desc_get() and axi_chan_block_xfer_complete() functions in drivers/dma/dw-axi-dmac/dw-axi-dmac-platform.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

477) Improper locking

EUVDB-ID: #VU94272

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-40972

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the ext4_xattr_set_entry(), iput(), ext4_xattr_block_set() and ext4_xattr_ibody_set() functions in fs/ext4/xattr.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

478) Race condition

EUVDB-ID: #VU94297

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-40976

CWE-ID: CWE-362 - Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a race condition within the lima_sched_timedout_job() function in drivers/gpu/drm/lima/lima_sched.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

479) Improper locking

EUVDB-ID: #VU94271

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-40977

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the mt76s_tx_status_data() function in drivers/net/wireless/mediatek/mt76/sdio.c, within the mt7921s_mac_reset() function in drivers/net/wireless/mediatek/mt76/mt7921/sdio_mac.c, within the mt7921e_mac_reset() function in drivers/net/wireless/mediatek/mt76/mt7921/pci_mac.c, within the mt7921_mac_reset_work() function in drivers/net/wireless/mediatek/mt76/mt7921/mac.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

480) Improper locking

EUVDB-ID: #VU94269

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-40981

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the batadv_purge_orig_ref() function in net/batman-adv/originator.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

481) NULL pointer dereference

EUVDB-ID: #VU94240

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-40982

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the ssb_bus_match() function in drivers/ssb/main.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

482) NULL pointer dereference

EUVDB-ID: #VU94239

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-40984

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the acpi_ex_system_memory_space_handler() function in drivers/acpi/acpica/exregion.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

483) Resource management error

EUVDB-ID: #VU94307

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-40987

CWE-ID: CWE-399 - Resource Management Errors

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to resource management error within the sumo_construct_vid_mapping_table() function in drivers/gpu/drm/amd/amdgpu/kv_dpm.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

484) Resource management error

EUVDB-ID: #VU94308

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-40988

CWE-ID: CWE-399 - Resource Management Errors

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to resource management error within the sumo_construct_vid_mapping_table() function in drivers/gpu/drm/radeon/sumo_dpm.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

485) Input validation error

EUVDB-ID: #VU94324

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-40989

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation within the vgic_v3_free_redist_region() and vgic_v3_set_redist_base() functions in arch/arm64/kvm/vgic/vgic-mmio-v3.c, within the kvm_vgic_dist_destroy() function in arch/arm64/kvm/vgic/vgic-init.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

486) Input validation error

EUVDB-ID: #VU94325

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-40990

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation within the mlx5_ib_create_srq() function in drivers/infiniband/hw/mlx5/srq.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

487) Integer overflow

EUVDB-ID: #VU94294

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-40994

CWE-ID: CWE-190 - Integer overflow

Exploit availability: No

Description

The vulnerability allows a local user to execute arbitrary code.

The vulnerability exists due to integer overflow within the max_vclocks_store() function in drivers/ptp/ptp_sysfs.c. A local user can execute arbitrary code.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

488) Improper locking

EUVDB-ID: #VU94266

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-40998

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the __ext4_fill_super() function in fs/ext4/super.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

489) Input validation error

EUVDB-ID: #VU94287

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-40999

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation within the ena_com_cdesc_rx_pkt_get() and ena_com_rx_pkt() functions in drivers/net/ethernet/amazon/ena/ena_eth_com.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

490) Memory leak

EUVDB-ID: #VU94212

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-41002

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the sec_alg_resource_free() function in drivers/crypto/hisilicon/sec2/sec_crypto.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

491) Improper locking

EUVDB-ID: #VU94265

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-41004

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the kernel/trace/Kconfig. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

492) Memory leak

EUVDB-ID: #VU94213

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-41006

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the nr_heartbeat_expiry() function in net/netrom/nr_timer.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

493) Input validation error

EUVDB-ID: #VU94508

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-41009

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation within the __aligned(), bpf_ringbuf_alloc(), bpf_ringbuf_restore_from_rec() and __bpf_ringbuf_reserve() functions in kernel/bpf/ringbuf.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

494) Input validation error

EUVDB-ID: #VU94530

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-41011

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation within the kfd_ioctl_alloc_memory_of_gpu(), criu_restore_memory_of_gpu() and kfd_mmio_mmap() functions in drivers/gpu/drm/amd/amdkfd/kfd_chardev.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

495) Use-after-free

EUVDB-ID: #VU94672

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-41012

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the fcntl_setlk() function in fs/locks.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

496) Out-of-bounds read

EUVDB-ID: #VU94835

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-41013

CWE-ID: CWE-125 - Out-of-bounds read

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to an out-of-bounds read error within the __xfs_dir3_data_check() function in fs/xfs/libxfs/xfs_dir2_data.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

497) Out-of-bounds read

EUVDB-ID: #VU94836

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-41014

CWE-ID: CWE-125 - Out-of-bounds read

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to an out-of-bounds read error within the xlog_recover_process_data() function in fs/xfs/xfs_log_recover.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

498) Input validation error

EUVDB-ID: #VU94842

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-41015

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation within the ocfs2_check_dir_entry(), ocfs2_search_dirblock(), __ocfs2_delete_entry(), __ocfs2_add_entry(), ocfs2_dir_foreach_blk_id(), ocfs2_dir_foreach_blk_el(), ocfs2_find_dir_space_id() and ocfs2_find_dir_space_el() functions in fs/ocfs2/dir.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

499) Out-of-bounds read

EUVDB-ID: #VU94837

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-41016

CWE-ID: CWE-125 - Out-of-bounds read

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to an out-of-bounds read error within the ocfs2_xattr_find_entry() function in fs/ocfs2/xattr.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

500) Input validation error

EUVDB-ID: #VU94843

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-41017

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation within the __jfs_getxattr() and jfs_listxattr() functions in fs/jfs/xattr.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

501) Use-after-free

EUVDB-ID: #VU94949

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-41040

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the net/sched/act_ct.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

502) Resource management error

EUVDB-ID: #VU95069

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-41041

CWE-ID: CWE-399 - Resource Management Errors

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to resource management error within the sock_set_flag() and spin_unlock() functions in net/ipv4/udp.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

503) Input validation error

EUVDB-ID: #VU95108

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-41044

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation within the ppp_read() and ppp_write() functions in drivers/net/ppp/ppp_generic.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

504) NULL pointer dereference

EUVDB-ID: #VU94982

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-41048

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the sk_msg_recvmsg() function in net/core/skmsg.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

505) Use-after-free

EUVDB-ID: #VU94945

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-41057

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the cachefiles_free_volume() function in fs/cachefiles/volume.c, within the cachefiles_withdraw_objects() and cachefiles_withdraw_cache() functions in fs/cachefiles/cache.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

506) Use-after-free

EUVDB-ID: #VU94944

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-41058

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the cachefiles_withdraw_volumes() function in fs/cachefiles/cache.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

507) Use of uninitialized resource

EUVDB-ID: #VU95033

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-41059

CWE-ID: CWE-908 - Use of Uninitialized Resource

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to use of uninitialized resource within the hfsplus_listxattr() function in fs/hfsplus/xattr.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

508) Improper locking

EUVDB-ID: #VU94992

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-41063

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the hci_unregister_dev() function in net/bluetooth/hci_core.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

509) Improper locking

EUVDB-ID: #VU94991

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-41064

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the eeh_pe_bus_get() function in arch/powerpc/kernel/eeh_pe.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

510) Memory leak

EUVDB-ID: #VU94927

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-41066

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the ibmvnic_xmit() function in drivers/net/ethernet/ibm/ibmvnic.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

511) Use-after-free

EUVDB-ID: #VU94943

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-41069

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the soc_tplg_dapm_graph_elems_load() function in sound/soc/soc-topology.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

512) Use-after-free

EUVDB-ID: #VU94942

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-41070

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the kvm_spapr_tce_attach_iommu_group() function in arch/powerpc/kvm/book3s_64_vio.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

513) Out-of-bounds read

EUVDB-ID: #VU94956

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-41071

CWE-ID: CWE-125 - Out-of-bounds read

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to an out-of-bounds read error within the ieee80211_prep_hw_scan() function in net/mac80211/scan.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

514) Input validation error

EUVDB-ID: #VU95106

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-41072

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation within the cfg80211_wext_siwscan() function in net/wireless/scan.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

515) Memory leak

EUVDB-ID: #VU94928

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-41076

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the nfs4_set_security_label() function in fs/nfs/nfs4proc.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

516) Memory leak

EUVDB-ID: #VU94929

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-41078

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the btrfs_quota_disable() function in fs/btrfs/qgroup.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

517) Resource management error

EUVDB-ID: #VU95051

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-41081

CWE-ID: CWE-399 - Resource Management Errors

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to resource management error within the ila_output() function in net/ipv6/ila/ila_lwt.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

518) Double free

EUVDB-ID: #VU95008

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-41087

CWE-ID: CWE-415 - Double Free

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to a double free error within the ata_host_alloc() function in drivers/ata/libata-core.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

519) Out-of-bounds read

EUVDB-ID: #VU94840

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-41090

CWE-ID: CWE-125 - Out-of-bounds read

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to an out-of-bounds read error within the tap_get_user_xdp() function in drivers/net/tap.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

520) Out-of-bounds read

EUVDB-ID: #VU94841

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-41091

CWE-ID: CWE-125 - Out-of-bounds read

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to an out-of-bounds read error within the tun_xdp_one() function in drivers/net/tun.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

521) Type Confusion

EUVDB-ID: #VU94923

Risk: Low

CVSSv4.0: 1.1 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-42070

CWE-ID: CWE-843 - Type confusion

Exploit availability: No

Description

The vulnerability allows a local user to gain access to sensitive information.

The vulnerability exists due to a type confusion error within the nft_lookup_init() function in net/netfilter/nft_lookup.c, within the nf_tables_fill_setelem() and nft_validate_register_store() functions in net/netfilter/nf_tables_api.c. A local user can pass specially crafted data to the packet filtering to trigger a type confusion error and gain access to sensitive information.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

522) NULL pointer dereference

EUVDB-ID: #VU94968

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-42079

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the gfs2_jindex_free() function in fs/gfs2/super.c, within the lops_before_commit() function in fs/gfs2/log.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

523) Buffer overflow

EUVDB-ID: #VU95039

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-42093

CWE-ID: CWE-119 - Memory corruption

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to memory corruption within the dpaa2_eth_xdp_xmit() and update_xps() functions in drivers/net/ethernet/freescale/dpaa2/dpaa2-eth.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

524) Improper locking

EUVDB-ID: #VU94987

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-42096

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the profile_pc() function in arch/x86/kernel/time.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

525) Use-after-free

EUVDB-ID: #VU94936

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-42105

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the nilfs_store_disk_layout() function in fs/nilfs2/the_nilfs.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

526) NULL pointer dereference

EUVDB-ID: #VU94961

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-42122

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the dcn31_hpo_dp_link_encoder_create() function in drivers/gpu/drm/amd/display/dc/resource/dcn351/dcn351_resource.c, within the dcn31_hpo_dp_link_encoder_create() function in drivers/gpu/drm/amd/display/dc/resource/dcn35/dcn35_resource.c, within the dcn321_hpo_dp_link_encoder_create() function in drivers/gpu/drm/amd/display/dc/resource/dcn321/dcn321_resource.c, within the dcn32_hpo_dp_link_encoder_create() and dml1_validate() functions in drivers/gpu/drm/amd/display/dc/resource/dcn32/dcn32_resource.c, within the dcn31_hpo_dp_link_encoder_create() function in drivers/gpu/drm/amd/display/dc/resource/dcn316/dcn316_resource.c, within the dcn31_hpo_dp_link_encoder_create() function in drivers/gpu/drm/amd/display/dc/resource/dcn315/dcn315_resource.c, within the dcn31_hpo_dp_link_encoder_create() and dcn314_validate_bandwidth() functions in drivers/gpu/drm/amd/display/dc/resource/dcn314/dcn314_resource.c, within the dcn31_hpo_dp_link_encoder_create() and dcn31_validate_bandwidth() functions in drivers/gpu/drm/amd/display/dc/resource/dcn31/dcn31_resource.c, within the dcn30_validate_bandwidth() function in drivers/gpu/drm/amd/display/dc/resource/dcn30/dcn30_resource.c, within the dcn32_clk_mgr_construct() function in drivers/gpu/drm/amd/display/dc/clk_mgr/dcn32/dcn32_clk_mgr.c, within the dcn3_clk_mgr_construct() function in drivers/gpu/drm/amd/display/dc/clk_mgr/dcn30/dcn30_clk_mgr.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

527) Input validation error

EUVDB-ID: #VU95097

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-42124

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation within the qedf_execute_tmf() function in drivers/scsi/qedf/qedf_io.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

528) Buffer overflow

EUVDB-ID: #VU95054

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-42145

CWE-ID: CWE-119 - Memory corruption

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory corruption within the MODULE_AUTHOR(), __get_agent(), send_handler(), recv_handler() and ib_umad_read() functions in drivers/infiniband/core/user_mad.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

529) Use of uninitialized resource

EUVDB-ID: #VU95027

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-42161

CWE-ID: CWE-908 - Use of Uninitialized Resource

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to use of uninitialized resource within the tools/lib/bpf/bpf_core_read.h. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

530) Improper error handling

EUVDB-ID: #VU95012

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-42224

CWE-ID: CWE-388 - Error Handling

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper error handling within the mv88e6xxx_default_mdio_bus() function in drivers/net/dsa/mv88e6xxx/chip.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

531) Resource management error

EUVDB-ID: #VU95062

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-42230

CWE-ID: CWE-399 - Resource Management Errors

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to resource management error within the define_machine() function in arch/powerpc/platforms/pseries/setup.c, within the pseries_kexec_cpu_down() function in arch/powerpc/platforms/pseries/kexec.c, within the default_machine_kexec() function in arch/powerpc/kexec/core_64.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-freescale: before 5.14.21-150500.55.73.1

dtb-exynos: before 5.14.21-150500.55.73.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

dtb-marvell: before 5.14.21-150500.55.73.1

dtb-hisilicon: before 5.14.21-150500.55.73.1

dtb-sprd: before 5.14.21-150500.55.73.1

dtb-amazon: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-optional: before 5.14.21-150500.55.73.1

dtb-qcom: before 5.14.21-150500.55.73.1

dtb-broadcom: before 5.14.21-150500.55.73.1

dtb-altera: before 5.14.21-150500.55.73.1

dtb-mediatek: before 5.14.21-150500.55.73.1

dtb-arm: before 5.14.21-150500.55.73.1

dtb-amlogic: before 5.14.21-150500.55.73.1

dtb-apm: before 5.14.21-150500.55.73.1

dtb-amd: before 5.14.21-150500.55.73.1

dtb-apple: before 5.14.21-150500.55.73.1

dtb-cavium: before 5.14.21-150500.55.73.1

dtb-socionext: before 5.14.21-150500.55.73.1

dtb-nvidia: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb: before 5.14.21-150500.55.73.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-rockchip: before 5.14.21-150500.55.73.1

dtb-renesas: before 5.14.21-150500.55.73.1

dlm-kmp-64kb: before 5.14.21-150500.55.73.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-64kb: before 5.14.21-150500.55.73.1

kernel-64kb-devel: before 5.14.21-150500.55.73.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-64kb-debugsource: before 5.14.21-150500.55.73.1

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.73.1

kernel-64kb-extra: before 5.14.21-150500.55.73.1

dtb-allwinner: before 5.14.21-150500.55.73.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.73.1

gfs2-kmp-64kb: before 5.14.21-150500.55.73.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.73.1

dtb-lg: before 5.14.21-150500.55.73.1

dtb-xilinx: before 5.14.21-150500.55.73.1

dtb-aarch64: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.73.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.73.1

kernel-zfcpdump: before 5.14.21-150500.55.73.1

kernel-livepatch-SLE15-SP5_Update_17-debugsource: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default: before 1-150500.11.3.1

kernel-livepatch-5_14_21-150500_55_73-default-debuginfo: before 1-150500.11.3.1

kernel-kvmsmall: before 5.14.21-150500.55.73.1

kernel-default: before 5.14.21-150500.55.73.1

kernel-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-build-debugsource: before 5.14.21-150500.55.73.1

kernel-default-livepatch: before 5.14.21-150500.55.73.1

kernel-obs-build: before 5.14.21-150500.55.73.1

reiserfs-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-extra-debuginfo: before 5.14.21-150500.55.73.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-extra: before 5.14.21-150500.55.73.1

cluster-md-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-devel: before 5.14.21-150500.55.73.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-debugsource: before 5.14.21-150500.55.73.1

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional-debuginfo: before 5.14.21-150500.55.73.1

kernel-obs-qa: before 5.14.21-150500.55.73.1

dlm-kmp-default: before 5.14.21-150500.55.73.1

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-optional: before 5.14.21-150500.55.73.1

kernel-default-devel-debuginfo: before 5.14.21-150500.55.73.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.73.1

kernel-syms: before 5.14.21-150500.55.73.1

kernel-default-livepatch-devel: before 5.14.21-150500.55.73.1

gfs2-kmp-default: before 5.14.21-150500.55.73.1

ocfs2-kmp-default: before 5.14.21-150500.55.73.1

kselftests-kmp-default: before 5.14.21-150500.55.73.1

kernel-default-base-rebuild: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.73.1

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-devel: before 5.14.21-150500.55.73.1

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.73.1

kernel-default-base: before 5.14.21-150500.55.73.1.150500.6.33.8

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-vdso: before 5.14.21-150500.55.73.1

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-default-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso: before 5.14.21-150500.55.73.1

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-devel: before 5.14.21-150500.55.73.1

kernel-debug-debugsource: before 5.14.21-150500.55.73.1

kernel-debug-debuginfo: before 5.14.21-150500.55.73.1

kernel-debug-livepatch-devel: before 5.14.21-150500.55.73.1

kernel-debug: before 5.14.21-150500.55.73.1

kernel-source-vanilla: before 5.14.21-150500.55.73.1

kernel-devel: before 5.14.21-150500.55.73.1

kernel-macros: before 5.14.21-150500.55.73.1

kernel-source: before 5.14.21-150500.55.73.1

kernel-docs-html: before 5.14.21-150500.55.73.2

kernel-docs: before 5.14.21-150500.55.73.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20242939-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.



###SIDEBAR###